swisskyrepo / PayloadsAllTheThingsLinks
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
☆70,939Updated 2 weeks ago
Alternatives and similar repositories for PayloadsAllTheThings
Users that are interested in PayloadsAllTheThings are comparing it to the libraries listed below
Sorting:
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆18,499Updated last week
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and n…☆10,439Updated this week
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆9,859Updated 3 weeks ago
- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems☆12,205Updated last month
- In-depth attack surface mapping and asset discovery☆13,652Updated last month
- 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List☆7,595Updated last year
- Adversary Emulation Framework☆10,105Updated last week
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,727Updated 4 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,703Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆14,952Updated last week
- A swiss army knife for pentesting networks☆8,943Updated last year
- The all-in-one browser extension for offensive security professionals 🛠☆6,282Updated 9 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆8,035Updated 2 weeks ago
- Fast passive subdomain enumeration tool.☆12,386Updated last week
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆66,339Updated this week
- Fast web fuzzer written in Go☆14,918Updated 5 months ago
- Web path scanner☆13,538Updated 3 weeks ago
- Directory/File, DNS and VHost busting tool written in Go☆12,691Updated this week
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆6,904Updated last month
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,525Updated last year
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆6,819Updated last month
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,489Updated this week
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,336Updated 6 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,140Updated 5 months ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,637Updated 2 years ago
- A fast, simple, recursive content discovery tool written in Rust.☆7,059Updated last week
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,380Updated this week
- Tools and Techniques for Red Team / Penetration Testing☆7,375Updated 7 months ago
- A Workflow Engine for Offensive Security☆5,919Updated 2 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆5,819Updated last year