Skip to content
/ PayloadsAll Public

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

41 stars 15 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

andripwn/PayloadsAll

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits

AWS Amazon Bucket S3

AWS Amazon Bucket S3

 
 

Command Injection

Command Injection

 
 

GraphQL Injection

GraphQL Injection

 
 

JSON Web Token

JSON Web Token

 
 

Open Redirect

Open Redirect

 
 

SQL Injection

SQL Injection

 
 

XSS Injection

XSS Injection

 
 

XXE Injection

XXE Injection

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

Repository files navigation

Payloads All The Things

A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques ! I ❤️ pull requests :)

You can also contribute with a 🍻 IRL or with buymeacoffee.com

Coffee

Every section contains the following files, you can use the _template_vuln folder to create a new chapter:

  • README.md - vulnerability description and how to exploit it
  • Intruder - a set of files to give to Burp Intruder
  • Images - pictures for the README.md
  • Files - some files referenced in the README.md

About

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Topics

python sql rce vulnerability bugbounty pentest payloads bugcrowd hackerone researchers bughunter xsss allpayload securityresearchers vulnerabilityanalysis

Resources

Readme
Activity

Stars

41 stars

Watchers

1 watching

Forks

15 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages