mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-13 14:52:53 +00:00
bountybugbountybypasscheatsheetenumerationhackinghacktoberfestmethodologypayloadpayloadspenetration-testingpentestprivilege-escalationredteamsecurityvulnerabilityweb-application
CRLF | ||
CSV_Injection | ||
CVE Shellshock Heartbleed | ||
Open_Redirect | ||
PHP_Include | ||
PHP_Serialization | ||
RCE | ||
SQL_Injection | ||
SSRF | ||
TAR_Code_Exec | ||
Traversal_Directory | ||
Upload | ||
XSS | ||
XXE | ||
README.md |
Payloads All The Things
A list of usefull payloads and bypasses for Web Application Security
TODO:
- PHP Serialization
- CSV Injection
To improve:
- RCE
- SQL injection
- XXE
- SSRF
- Upload
- Tar command exec
- Traversal Directory
- XSS
- PHP Include
TODO v2:
- Remove "_" in dir name
- Add CVE : Hearbleed and ShellShock ?