Mirrors/PayloadsAllTheThings
2
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-11-10 07:04:22 +00:00
Code Issues Projects Releases Packages Wiki Activity
995 commits 2 branches 5 tags 52 MiB
Commit graph

995 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ayoma Wijethunga
b04579aa30
Add Kubernetes Pentest Methodology Part 3 
$subject and minor correction of a file path
 2021-01-20 09:07:23 +05:30
Swissky
0675573d93
Merge pull request #325 from u0pattern/u0pattern-patch-1 
SSTI Payload in Jinja2 - Arbitrary file read
 2021-01-18 10:08:47 +01:00
ムハンマド
89429f9c4f
SSTI Payload in Jinja2 - Arbitrary file read 2021-01-18 11:48:38 +03:00
Swissky
d4d2ba45c2
Merge pull request #323 from lanjelot/protocol-smuggling 
Add PortSwigger http-desync reborn article
 2021-01-16 19:04:16 +01:00
lanjelot
c5d8f3fc4f Add PortSwigger http-desync reborn article 2021-01-17 04:23:38 +11:00
Swissky
7b943d46bc
Merge pull request #322 from lapolis/patch-1 
Added closing bracket in unicode full width bypass
 2021-01-15 17:42:13 +01:00
lapolis_aka_blu
6f758ba6c0
Added closing bracket in unicode full width bypass 
Yeah I know it is logic to use it if you really need the closing tag. But having both brackets in your repo makes it quicker to copy paste :D
 2021-01-15 16:38:51 +00:00
Swissky
01aadf3a44 Alternate Data Stream 2021-01-13 10:22:59 +01:00
Swissky
836861c86e
Merge pull request #320 from lanjelot/cloudsplaining 
New cloudsplaining tool to AWS Pentest page
 2021-01-12 13:42:36 +01:00
Swissky
964f2cde35
Merge pull request #319 from lanjelot/insecure-scm-cleanup 
Cleaned up Insecure SCM page and added new Yar tool
 2021-01-12 13:36:38 +01:00
lanjelot
5cfa93f98b Add new cloudsplaining tool to AWS Pentest page 2021-01-12 22:59:37 +11:00
lanjelot
4473764c4d Fix ToC 2021-01-12 22:45:12 +11:00
lanjelot
8c97cec6d8 Clean up Insecure SCM page and add new tool yar 2021-01-12 22:39:37 +11:00
Swissky
3a6ac550b8 DSRM Admin 2021-01-08 23:41:50 +01:00
Swissky
dd80fb899c
Merge pull request #315 from timgates42/bugfix_typo_account 
docs: fix simple typo, accound -> account
 2020-12-22 23:53:27 +01:00
Tim Gates
7846225bfd
docs: fix simple typo, accound -> account 
There is a small typo in Methodology and Resources/Active Directory Attack.md.

Should read `account` rather than `accound`.
 2020-12-23 09:16:40 +11:00
Swissky
609c38bde5
Merge pull request #314 from ahboon/HTTP-Parameter-Pollution 
Added Golang param information
 2020-12-22 20:02:56 +01:00
Cher Boon
70d8db7de4 Updated to include modules used for golang 2020-12-23 01:30:23 +08:00
Cher Boon
a6727e8305 Added Golang information 2020-12-23 01:28:32 +08:00
Swissky
0929d5596c
Merge pull request #313 from ahboon/HTTP-Parameter-Pollution 
Created HTTP Parameter Pollution
 2020-12-22 11:27:07 +01:00
Cher Boon
20da830ac1 Create README.md 2020-12-22 17:49:45 +08:00
Swissky
16b207eb0b LAPS Password 2020-12-20 21:45:41 +01:00
Swissky
67752de6e9 Bronze Bit Attack 2020-12-18 22:38:30 +01:00
Swissky
66a0fd1cbe
Merge pull request #311 from lanjelot/deser 
Add tool gadgetprobe
 2020-12-18 15:25:26 +01:00
Swissky
1e69ec63a8
Merge pull request #312 from lanjelot/ebs 
Update Cloud AWS Methodology
 2020-12-18 15:24:41 +01:00
Swissky
35a86f81d7
Merge pull request #310 from lanjelot/smuggler 
Add tools kube-hunter and smuggler
 2020-12-18 15:22:20 +01:00
lanjelot
4dc5777c33 Add gadgetprobe tool 2020-12-18 23:03:25 +11:00
lanjelot
e0c745cbf4 Fix AWS duplicated tool enumerate-iam 2020-12-18 22:52:21 +11:00
lanjelot
d2d1a2d913 Add tools 2020-12-18 22:46:28 +11:00
lanjelot
4b9baf37d3 Add dufflebag tool and cleanup 2020-12-18 22:45:07 +11:00
Swissky
f7e8f515a5 Application Escape and Breakout 2020-12-17 08:56:58 +01:00
Swissky
973f091d1b
Merge pull request #308 from lanjelot/fix-web-methodology 
Fix links and duplicated nmap and massscan examples
 2020-12-12 19:43:34 +01:00
Swissky
3e50b711b7
Merge pull request #307 from lanjelot/fix-typos 
Fix typos
 2020-12-12 19:42:46 +01:00
lanjelot
4c18e29a6b Fix links and duplicated nmap and massscan examples 2020-12-13 04:50:59 +11:00
lanjelot
7e3db3a3f4 Fix typos 2020-12-13 04:34:10 +11:00
Swissky
aab4f3e14b
Merge pull request #306 from lanjelot/master 
Add reference to panoptic and rip-hg tools
 2020-12-11 19:04:53 +01:00
lanjelot
c6d0ba29e7 Add reference to panoptic and rip-hg tools 2020-12-12 04:52:21 +11:00
Swissky
b5a758dada
Merge pull request #305 from lanjelot/master 
Add missing url
 2020-12-11 18:39:38 +01:00
lanjelot
aaff374395 Add missing url 2020-12-12 04:26:31 +11:00
Swissky
e58bfe8310
Merge pull request #304 from lanjelot/master 
Add tool GitTools
 2020-12-11 18:25:58 +01:00
lanjelot
4ab874d854 Add tool GitTools 2020-12-12 04:19:54 +11:00
Swissky
73fdd6e218 Mimikatz - Elevate token with LSA protection 2020-12-09 23:33:40 +01:00
Swissky
12aab45018 Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings 2020-12-08 14:31:47 +01:00
Swissky
19a2950b8d AMSI + Trust 2020-12-08 14:31:01 +01:00
Swissky
2f83ee56f4
Merge pull request #302 from noraj/patch-1 
add another example of XXE in XLSX
 2020-12-08 11:36:26 +01:00
Alexandre ZANNI
7733d4495e
add another example of XXE in XLSX 2020-12-08 09:50:30 +01:00
Swissky
78cc68674b
Merge pull request #296 from brnhrd/patch-1 
Fix table of contents
 2020-12-07 17:21:02 +01:00
Swissky
f48ee0bca5 Deepce - Docker Enumeration, Escalation of Privileges and Container Escapes 2020-12-06 18:59:43 +01:00
Swissky
27050f6dd8 MSSQL Server Cheatsheet 2020-12-05 11:37:34 +01:00
Swissky
e9390d1572
Merge pull request #297 from u0pattern/u0pattern-patch-1 
XXE WAF Bypass Added
 2020-12-04 10:21:17 +01:00