Mirrors/PayloadsAllTheThings
2
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2025-03-14 13:56:58 +00:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • aba6f1e731 Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings Swissky 2023-06-08 11:07:39 +02:00
  • 93fa4df7cd Prompt Injection Swissky 2023-06-08 11:06:37 +02:00
  • 3e8a39a87d
         xxe - go secure workshop #647 Alexandre ZANNI 2023-06-08 10:14:35 +02:00
  • e17b6e1ac4
         Merge pull request from NaxnN/patch-1 Swissky 2023-06-07 09:46:59 +02:00
  • 598d2ca3fa
         Update README.md #646 KeoOp 2023-06-07 14:15:07 +08:00
  • b8c803717a WDAC Policy Removal + SSRF domains Swissky 2023-05-31 14:18:25 +02:00
  • 226569b753
         Update README.md #645 azurit 2023-05-21 14:54:42 +02:00
  • f85f2cb4c6
         Merge pull request from rdbo/patch-1 Swissky 2023-05-18 13:32:58 +02:00
  • 83b2d80a56
         fixed typos #644 Rdbo 2023-05-18 01:58:36 +00:00
  • 0a07e07d00 Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings Swissky 2023-05-15 19:23:58 +02:00
  • 6adfe5d865 GraphQL Batching Attacks Swissky 2023-05-15 19:23:07 +02:00
  • af4ade2a44
         Merge pull request from p0dalirius/patch-2 Swissky 2023-05-09 20:16:05 +02:00
  • b3f98adf0c
         SSTI / jinja2 : Removed dot in lipsum.__globals__.["os"] #643 Rémi GASCOU (Podalirius) 2023-05-09 20:15:02 +02:00
  • 8d2c30e969
         Merge pull request from p0dalirius/patch-1 Swissky 2023-05-09 18:58:57 +02:00
  • 9c2b040242
         Adding Jinja2 RCE through lipsum in Templates #642 Rémi GASCOU (Podalirius) 2023-05-09 18:34:35 +02:00
  • 5af6a23a2e DPAPI LocalMachine + BitLocker Swissky 2023-05-08 17:08:25 +02:00
  • 0dd92aa89d
         Merge pull request from m3dsec/patch-2 Swissky 2023-05-08 16:22:30 +02:00
  • 57f978c574
         Update PostgreSQL Injection.md #641 somebodyoncetoldme 2023-05-04 22:49:37 -06:00
  • 8156f495fb
         Add Kerberos CVE-2022-33679 (RC4 Is Still Considered Harmful) #640 m3dsec 2023-04-30 21:45:33 +01:00
  • 55df53105e
         Merge pull request from TomWilford/master Swissky 2023-04-28 16:24:20 +02:00
  • c1dc141e13
         Added 'passthru' filter exploits #639 Tom Wilford 2023-04-28 14:47:59 +01:00
  • 1e66a42bba
         Merge pull request from ZkClown/master Swissky 2023-04-20 21:31:23 +02:00
  • 0f4d747913 Add injection into AD through ldap signing not required and ldap channel binding disabled #638 ZkClown 2023-04-20 15:38:26 +02:00
  • 8b543c80aa Add network scan with pure bash ZkClown 2023-04-20 15:21:48 +02:00
  • 2a4ce78080 Add Office execute WinAPI via VBA ZkClown 2023-04-20 15:00:33 +02:00
  • b0445a7250
         Merge pull request from ZkClown/master Swissky 2023-04-19 21:51:04 +02:00
  • 47df1695a1 Add Powerhsell Reflection through Delegate Type and Basic HTML Smuggling #637 ZkClown 2023-04-19 17:59:10 +02:00
  • 0875f14da9 Add Powerhsell Reflection through Delegate Type and Basic HTML Smuggling #636 zkclown 2023-04-19 16:38:49 +02:00
  • e717839fda
         Merge pull request from MatteoPaier/fix-param-pollution-golang Swissky 2023-04-14 17:48:01 +02:00
  • 6861c46fcd MySQL MSSQL Oracle SQL Update Swissky 2023-04-14 17:45:45 +02:00
  • c3f5da6014 Fixed Golang net/http param pollution outcome #635 Matteo Paier 2023-04-14 14:41:35 +02:00
  • 25d2be529f BadSecrets Tool Swissky 2023-04-12 13:12:33 +02:00
  • ff6c22b86e
         Merge pull request from mpgn/master Swissky 2023-04-12 11:27:26 +02:00
  • 3c7c863233
         Fix path with sessionS with an S for php #634 mpgn 2023-04-11 17:08:57 +02:00
  • 14c6c9642d
         Merge pull request from harunoz/patch-1 Swissky 2023-04-09 18:41:00 +02:00
  • 87e78b4c4b
         Update README.md #633 Harun 2023-04-09 12:35:43 -04:00
  • 86cc53244d LOL Drivers Swissky 2023-04-07 09:22:07 +02:00
  • 30d17b4924 Fix markdown typo ESC1-9 Swissky 2023-04-05 12:47:47 +02:00
  • 0a70636d28 ETW Providers Swissky 2023-04-03 10:48:53 +02:00
  • d040c0e677 Web Cache Deception Methodology Swissky 2023-03-28 21:53:53 +02:00
  • fddd094ee1 LFI iconv and dechunk + ETW + NTDS Dump Rework Swissky 2023-03-27 22:38:25 +02:00
  • 40b2747f56
         Please enforce #632 Z4 2023-03-26 13:13:20 -04:00
  • dd0c23f9a2 ImageMagick Typo Swissky 2023-03-19 22:46:56 +01:00
  • 723b3213b2 Windows Information Protection Swissky 2023-03-18 19:55:43 +01:00
  • 7eca38b081
         Merge 6624176d87 into 579207aa8f #631 whatashell 2023-03-16 09:53:12 +00:00
  • 6624176d87 nada #631 h4ckermate 2023-03-16 10:52:59 +01:00
  • 34b6b3a1ff nose h4ckermate 2023-03-16 10:47:33 +01:00
  • 77c144dc5e
         Delete custom.css whatashell 2023-03-16 10:27:52 +01:00
  • bd00311311 prueba h4ckermate 2023-03-16 10:23:55 +01:00
  • 579207aa8f JWT jku and jwks - manual exploitation Swissky 2023-03-12 18:02:29 +01:00
  • d5729888c3 S4U Extension Swissky 2023-03-11 17:53:16 +01:00
  • b88457367b Active Directory Integrated DNS Swissky 2023-03-11 11:52:52 +01:00
  • 5e8737485b Fix responsive - rollback - FF was glitching Swissky 2023-03-11 00:11:27 +01:00
  • 648f4ad2ca Fix responsive icons Swissky 2023-03-10 23:45:27 +01:00
  • 084efe8a6b Fix responsive display on PATT Web Swissky 2023-03-10 23:20:39 +01:00
  • f379b60ef1 Web Theme + Credential Guard + PPL Swissky 2023-03-10 22:14:22 +01:00
  • 5817de1fb2
         Add documentation for PDF JS PoC #630 Mat 2023-03-07 17:10:23 +01:00
  • e43f1527c0 JWT rework 0.2: jwks + kid + cve Swissky 2023-03-07 11:39:39 +01:00
  • 2a3d175620 GraphQL and JWT rework v0.1 Swissky 2023-03-05 12:05:43 +01:00
  • 776b2bd934
         Merge pull request from maxence-Doyensec/file-upload-uwsgi Swissky 2023-03-01 15:13:07 +01:00
  • 5f8b3f8a14 add uwsgi configuration file to Upload Insecure File #629 Maxence Schmitt 2023-03-01 14:49:31 +01:00
  • eac498dab0
         Add reference to using certreq + certutil for ESC1 #628 Alex Kozlov 2023-02-27 14:45:06 -05:00
  • 7ef9babc9f
         Merge pull request from noraj/patch-1 Swissky 2023-02-26 14:14:56 +01:00
  • 9bdfa7f8c7
         add "GraphQL for Pentesters" ref #627 Alexandre ZANNI 2023-02-25 23:09:47 +01:00
  • ecc241d17e
         Merge pull request from mschader/patch-10 Swissky 2023-02-24 18:08:28 +01:00
  • d57dcabf46
         Web Sockets: Update README.md #626 Markus 2023-02-24 10:37:52 +01:00
  • c9d0878817 Kerberos Tickets Dump, Convert, Replay Swissky 2023-02-21 23:21:22 +01:00
  • 2a65b59c01 RODC + PAM Trusts Swissky 2023-02-20 18:44:44 +01:00
  • a38701a7e2 MOTD + SpEL injection Swissky 2023-02-20 17:21:43 +01:00
  • d3ccbb5370
         Merge pull request from somebodyoncetoldme207/patch-1 Swissky 2023-02-18 22:23:52 +01:00
  • bd1a738492
         Update README.md #625 es3 2023-02-18 06:47:05 +00:00
  • cedf4aa9f6 Office Default Passwords + SMBExec Swissky 2023-02-17 12:01:52 +01:00
  • 8442b304c9 SMBExec + Refresh & Access Token Azure Swissky 2023-02-15 17:03:49 +01:00
  • 411f2455a9 Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings Swissky 2023-02-15 12:34:26 +01:00
  • ae46ac0338 WMIExec + SharpSCCM Swissky 2023-02-15 12:33:20 +01:00
  • 73996ea52a
         Merge pull request from Techbrunch/patch-13 Swissky 2023-02-14 15:15:04 +01:00
  • 36e135776f AD Groups + PowerShell Defenses Swissky 2023-02-14 15:13:41 +01:00
  • da42d27a3c
         Update sponsor link #624 Techbrunch 2023-02-14 14:26:49 +01:00
  • f1a85f22b9 Windows Defenses Swissky 2023-02-12 18:17:09 +01:00
  • 5cd5de6803 Workflow cleanup Swissky 2023-02-11 20:32:36 +01:00
  • 9a511046ae GPO update timing Swissky 2023-02-11 20:29:32 +01:00
  • c08949fdc2 Github Pages Trigger Swissky 2023-02-11 20:22:28 +01:00
  • 2089c5efb1 Github Pages Swissky 2023-02-11 20:11:33 +01:00
  • 14cc88371d WSL + RDP Passwords + MSPaint Escape Swissky 2023-02-11 17:49:55 +01:00
  • ccae5a6e09 Credentials Rework Swissky 2023-02-11 12:07:25 +01:00
  • e36245977f
         Adding Privilege Escalation via WP Cron #623 Tomi 2023-02-08 23:35:34 +07:00
  • 3cb5758ce0
         Update README.md #622 PungJL 2023-02-05 13:30:52 +08:00
  • d918c218a0
         Merge 8265c327b5 into 8c88590d7c #580 Patryk Krawaczyński 2023-02-02 10:17:30 +02:00
  • 8c88590d7c
         Merge pull request from SSKale1/master Swissky 2023-02-01 09:54:34 +01:00
  • b03250a4f6 Add Training, AzureGoat #621 Shantanu Kale 2023-02-01 09:48:26 +05:30
  • ce40e39dcc Add AWSGoat Shantanu Kale 2023-02-01 09:46:13 +05:30
  • 4451d4919a
         Merge pull request from noraj/patch-1 Swissky 2023-01-28 16:31:51 +01:00
  • 89782643c9
         SSTI: add some jinja2 examples #620 Alexandre ZANNI 2023-01-28 15:29:54 +01:00
  • d0067e13d5
         Merge pull request from CravateRouge/patch-2 Swissky 2023-01-24 09:53:54 +01:00
  • a8bef1873a
         Add PrintNightmare exploit using WebDAV #619 CravateRouge 2023-01-23 17:06:05 +01:00
  • 3b4ccf084b
         Revert "add XXE in Java" #618 Kevpokemon 2023-01-22 18:27:09 -05:00
  • b75913ca8f
         Merge pull request from noraj/patch-1 Swissky 2023-01-19 17:14:19 +01:00
  • d23794be0f
         Merge pull request from CravateRouge/patch-1 Swissky 2023-01-19 17:13:44 +01:00
  • 230f8c3688
         Add SSL MITM using OpenSSL #617 CravateRouge 2023-01-19 16:33:11 +01:00
  • 563a1b2a1d
         add XXE in Java #616 Alexandre ZANNI 2023-01-19 10:23:56 +01:00