Mirrors/PayloadsAllTheThings
2
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-12-12 22:33:00 +00:00
Code Issues Projects Releases Packages Wiki Activity
1403 commits 2 branches 6 tags 66 MiB
Commit graph

1403 commits

This branch
This branch
All branches
Author SHA1 Message Date
NocFlame
2ef501f883
replaced backslash with forwardslash in cmd syntax 
As defined in cmd.exe /?
/C Carries out the command specified by string and then terminates
 2022-05-25 09:55:05 +02:00
Swissky
12ee527763
Merge pull request #500 from tarishard/master 
Added information on 307 and 308 redirects
 2022-05-19 12:29:02 +02:00
Tasos T
023a3c38e3 Added information on 307 and 308 redirects 2022-05-19 12:55:11 +03:00
Swissky
5035ed0891 WSUS Exploitation 2022-05-15 21:22:39 +02:00
Swissky
096885e0ad
Merge pull request #498 from PinkDraconian/patch-1 
Single quotes are messing with the command.
 2022-05-15 19:17:23 +02:00
PinkDraconian
5cc8e698c9
Single quotes are messing with the command. 2022-05-15 13:53:50 +02:00
Swissky
4cf464cc96 Certifried CVE-2022-26923 2022-05-13 09:44:51 +02:00
Swissky
d09659b164
Merge pull request #496 from cmd-ctrl-freq/master 
Update Cloud - AWS Pentest.md
 2022-05-11 10:25:30 +02:00
Swissky
ee528a862a Contributions README 2022-05-10 13:50:01 +02:00
Swissky
67457ec582 SCCM deployment + JSON uploads 2022-05-09 15:14:26 +02:00
David Fentz
d3a296486e
Update Cloud - AWS Pentest.md 
Added a reference to Cloudgoat in the Training section of the AWS pentesting docs.
 2022-05-05 08:48:55 -07:00
Swissky
33ea0b54fb
Merge pull request #495 from hahwul/saml-update 
Update tools in SAML Injection
 2022-05-01 13:00:05 +02:00
HAHWUL
b3442dd8b5
Add ZAP Addon in Tools 2022-05-01 00:47:18 +09:00
Swissky
5f499adeb5
Merge pull request #494 from moayadalmalat/patch-1 
Update Cobalt Strike - Cheatsheet.md
 2022-04-25 15:57:53 +02:00
Moayad Almalat
8a6e8b8f05
Update Cobalt Strike - Cheatsheet.md 
Update Cobalt Strike user Guide to the latest version.
 2022-04-25 15:18:04 +02:00
Swissky
5a89c6a5ca Windows Management Instrumentation Event Subscription 2022-04-24 15:01:18 +02:00
Swissky
76993f86a6
Merge pull request #483 from 0x-nope/master 
added Groovy EL section
 2022-04-20 10:13:41 +02:00
0x-nope
59cae2ddb4
Update README.md 2022-04-20 09:42:58 +02:00
0x-nope
7d290ded54
Merge branch 'swisskyrepo:master' into master 2022-04-20 09:32:52 +02:00
Swissky
b8bfa1f226
Merge pull request #460 from idealphase/master 
Update XSS README.md & Update Race Condition README.md
 2022-04-19 11:34:18 +02:00
idealphase
9f9fbe4fe5
Updated Race Condition README.md 
Added Turbo Intruder 2 Requests Examples use when the window may only be a few milliseconds.
 2022-04-19 11:06:34 +07:00
idealphase
6738f878f3
Updated README.md 
Added References: Bypassing Signature-Based XSS Filters: Modifying Script Code
 2022-04-19 10:45:32 +07:00
idealphase
de532030df
Merge branch 'swisskyrepo:master' into master 2022-04-19 10:43:04 +07:00
Swissky
578ea4d12b SOAP File Upload 2022-04-18 21:32:54 +02:00
Swissky
f8a7f1ded5
Merge pull request #462 from an4kein/patch-1 
Update README.md
 2022-04-18 21:02:50 +02:00
Swissky
85a50869f2
Merge pull request #482 from khiemtq-cyber/xss/angular-xss-1 
[update] Angular XSS payload
 2022-04-18 21:01:44 +02:00
Swissky
629f6d6cef
Merge pull request #491 from Ooggle/patch-1 
Add XSS document blacklist bypass
 2022-04-18 20:59:20 +02:00
Swissky
4ea77223bb
Merge pull request #486 from nerrorsec/patch-1 
import os
 2022-04-18 20:58:40 +02:00
Swissky
1a5537a044
Add warning about cPickle 2022-04-18 20:58:14 +02:00
Swissky
b337d209be
Merge pull request #493 from noraj/patch-1 
MSSQL: list permissions
 2022-04-18 18:01:28 +02:00
Alexandre ZANNI
c274874430
MSSQL: list permissions 2022-04-18 17:21:26 +02:00
Swissky
e23f785c69
Merge pull request #492 from noraj/patch-1 
HQLi in Java apps - HITBSecConf2016
 2022-04-14 18:13:37 +02:00
Alexandre ZANNI
1f73834d5e
HQLi in Java apps - HITBSecConf2016 2022-04-14 18:07:35 +02:00
Swissky
b0d05faded TruffleHog examples + Cortex XDR disable 2022-04-14 09:42:15 +02:00
Ooggle
39d1c6e7d8
Add document blacklist bypass 2022-04-09 12:55:21 +02:00
Swissky
9d07e04de7
Merge pull request #490 from xplo1t-sec/master 
Added command injection filter bypass
 2022-03-30 18:24:43 +02:00
xplo1t-sec
c885e76967 added new bypass 2022-03-30 03:16:37 -04:00
xplo1t-sec
4d8a45db5a added new bypass 2022-03-30 03:14:41 -04:00
xplo1t-sec
8a5e01f20d added new bypass 2022-03-30 03:13:18 -04:00
Swissky
89f0b93d43 Elastic EDR + VM Persistence 2022-03-27 19:50:33 +02:00
nerrorsec
df8493e4e6
import os 2022-03-24 11:54:34 +05:45
Swissky
d40e055629 Golden GMSA + Scheduled Task 2022-03-15 11:15:44 +01:00
Swissky
4abd52697f MSSQL Agent Command Execution 2022-03-10 11:05:17 +01:00
Swissky
540d3ca399 Vajra + MSSQL hashes 2022-03-05 18:31:15 +01:00
0x-nope
3db4d04467
added Groovy EL section 2022-03-04 17:39:28 +01:00
Swissky
521975a05c AV Removal + Cobalt SleepKit 2022-03-01 23:01:25 +01:00
ktq-cyber
5d898e004f [update] Angular XSS payload 2022-02-23 22:26:16 +07:00
Swissky
6a193730be
Merge pull request #481 from bodik/add-latex-controllchars 
LaTeX Injection catcode
 2022-02-22 16:01:15 +01:00
Radoslav Bodó
b8387bc3a5
LaTeX Injection catcode 
add `\catcode` to disable LaTex control characters
 2022-02-22 15:57:04 +01:00
Swissky
3e3562e553 ESC3 - Misconfigured Enrollment Agent Templates + Certipy v2 2022-02-20 13:15:28 +01:00