Exploitation: Difference between revisions
Jump to navigation
Jump to search
(Created page with " === Payloads === * https://github.com/swisskyrepo/PayloadsAllTheThings * https://github.com/payloadbox === Metasploit === * [https://docs.metasploit.com/docs/using-metasploit/getting-started/nightly-installers.html Install on server] === Public exploits === * https://www.kali.org/tools/exploitdb/#searchsploit === SQL injection (SQLi) === * https://github.com/sqlmapproject/sqlmap * Tamper agent scripts for sqlmap (WAF bypass): https://forum.bugcrowd.com/t/sqlmap-tampe...") |
mNo edit summary |
||
Line 17: | Line 17: | ||
=== Cross-site scripting (XSS) === | === Cross-site scripting (XSS) === | ||
* https://github.com/s0md3v/XSStrike | * https://github.com/s0md3v/XSStrike | ||
*https://github.com/mandatoryprogrammer/xsshunter | |||
=== Command Injection === | === Command Injection === | ||
* https://github.com/commixproject/commix | * https://github.com/commixproject/commix | ||
=== SSRF === | |||
* https://github.com/swisskyrepo/SSRFmap |
Revision as of 02:30, 22 April 2023
Payloads
Metasploit
Public exploits
SQL injection (SQLi)
- https://github.com/sqlmapproject/sqlmap
- Tamper agent scripts for sqlmap (WAF bypass): https://forum.bugcrowd.com/t/sqlmap-tamper-scripts-sql-injection-and-waf-bypass/423
- https://github.com/r0oth3x49/ghauri