PayloadsAllTheThings

wanderer/PayloadsAllTheThings

Fork 0

mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2025-12-22 03:45:09 +01:00

Commit Graph

Select branches

Hide Pull Requests

gh-pages

master

#10

#100

#101

#102

#103

#105

#106

#107

#108

#109

#110

#111

#112

#113

#114

#115

#116

#117

#118

#119

#120

#121

#122

#123

#124

#125

#127

#128

#129

#13

#130

#131

#132

#134

#135

#136

#137

#138

#139

#142

#143

#145

#146

#148

#149

#15

#150

#151

#152

#154

#155

#156

#157

#158

#159

#162

#163

#164

#165

#166

#167

#169

#17

#171

#172

#173

#174

#175

#176

#178

#179

#18

#180

#181

#182

#183

#186

#187

#188

#19

#190

#191

#192

#193

#196

#197

#198

#2

#20

#200

#201

#202

#204

#206

#207

#208

#209

#21

#210

#213

#214

#215

#216

#217

#218

#219

#22

#220

#221

#223

#224

#225

#226

#227

#229

#23

#230

#231

#233

#234

#235

#236

#237

#238

#239

#24

#240

#241

#242

#243

#244

#246

#247

#248

#249

#25

#250

#251

#253

#254

#255

#257

#258

#259

#26

#260

#261

#262

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#275

#276

#277

#278

#279

#28

#280

#281

#282

#283

#284

#285

#287

#288

#289

#29

#290

#291

#292

#293

#294

#296

#297

#3

#30

#302

#304

#305

#306

#307

#308

#309

#310

#311

#312

#313

#314

#315

#316

#319

#32

#320

#322

#323

#324

#325

#326

#327

#328

#329

#330

#331

#332

#333

#334

#335

#336

#338

#339

#34

#341

#343

#345

#346

#348

#349

#35

#350

#351

#352

#353

#354

#355

#356

#358

#36

#360

#361

#362

#365

#366

#367

#37

#370

#371

#374

#375

#376

#377

#378

#379

#38

#381

#383

#384

#386

#387

#388

#389

#39

#395

#396

#397

#398

#399

#40

#400

#401

#402

#403

#404

#405

#406

#407

#408

#409

#41

#410

#411

#412

#413

#414

#415

#416

#417

#418

#419

#42

#420

#421

#422

#423

#424

#425

#426

#427

#428

#429

#43

#430

#431

#432

#433

#434

#435

#436

#437

#438

#439

#44

#440

#441

#442

#443

#444

#445

#446

#447

#448

#449

#45

#450

#451

#452

#453

#454

#455

#456

#457

#458

#46

#460

#461

#462

#463

#464

#465

#466

#467

#468

#469

#47

#470

#471

#472

#473

#474

#475

#476

#477

#478

#479

#48

#480

#481

#482

#483

#484

#485

#486

#487

#488

#489

#49

#490

#491

#492

#493

#494

#495

#496

#497

#498

#499

#50

#500

#501

#502

#503

#504

#505

#506

#507

#508

#509

#510

#511

#512

#513

#514

#515

#516

#517

#518

#519

#52

#520

#521

#522

#523

#524

#525

#526

#527

#528

#529

#53

#530

#531

#532

#533

#534

#535

#536

#537

#538

#539

#54

#540

#541

#541

#542

#543

#544

#545

#546

#547

#548

#549

#55

#550

#551

#552

#553

#554

#555

#556

#557

#558

#559

#56

#560

#561

#562

#563

#564

#565

#566

#567

#568

#569

#57

#570

#571

#572

#573

#574

#575

#576

#577

#578

#579

#58

#580

#580

#581

#582

#583

#584

#585

#586

#587

#588

#589

#590

#591

#592

#593

#594

#595

#596

#597

#598

#599

#6

#60

#600

#601

#602

#603

#604

#604

#605

#606

#607

#608

#609

#61

#610

#611

#612

#613

#614

#615

#616

#617

#618

#619

#62

#620

#621

#622

#623

#624

#625

#626

#627

#628

#629

#63

#630

#631

#631

#632

#633

#634

#635

#636

#637

#638

#639

#64

#640

#641

#642

#643

#644

#645

#646

#647

#648

#649

#65

#650

#651

#652

#653

#654

#655

#655

#656

#657

#658

#659

#66

#660

#661

#662

#663

#664

#665

#666

#667

#668

#669

#67

#670

#671

#672

#673

#674

#675

#676

#677

#677

#678

#679

#680

#681

#682

#683

#684

#685

#686

#687

#688

#689

#690

#691

#692

#693

#694

#695

#696

#697

#698

#699

#7

#70

#700

#701

#702

#703

#704

#705

#706

#706

#707

#708

#709

#71

#710

#711

#712

#713

#714

#715

#716

#717

#718

#719

#719

#72

#720

#720

#721

#722

#723

#724

#725

#726

#727

#728

#729

#73

#730

#731

#732

#733

#734

#735

#736

#737

#738

#739

#740

#740

#741

#741

#742

#743

#744

#745

#746

#747

#748

#749

#75

#750

#751

#752

#753

#754

#755

#756

#757

#758

#759

#76

#760

#761

#762

#763

#764

#765

#766

#767

#768

#769

#770

#771

#772

#773

#774

#775

#775

#776

#777

#778

#779

#780

#781

#782

#783

#784

#785

#786

#787

#788

#789

#79

#790

#791

#792

#793

#794

#795

#796

#797

#798

#799

#799

#8

#8

#800

#801

#802

#803

#804

#805

#806

#807

#807

#808

#808

#809

#809

#82

#83

#85

#86

#87

#88

#92

#93

#94

#96

#97

#98

#99

1.0

2.0

2.1

3.0

4.0

4.1

4.2

54e3887077 Added PortSwigger Web Security Academy CORS Link Emanuel Duss 2020-04-12 15:12:34 +0200
3e5b367224 Added CORS Exploit when wildcard origin is allowed Emanuel Duss 2020-04-12 15:06:28 +0200
f120024c6b Added CORS exploitation with strict trusted origin whitelist using XSS Emanuel Duss 2020-04-12 14:55:05 +0200
48fcdeb7ca Some clarification in the exploit code Emanuel Duss 2020-04-12 14:38:52 +0200
4537555714 Added: CORS Misconfiguration with Null Origin allowed Emanuel Duss 2020-04-12 14:29:10 +0200
dd42b44011

Merge pull request #179 from mindfuckup/master Swissky 2020-04-11 18:26:22 +0200
930a3a0d8c Added: Cross-Site WebSocket Hijacking (CSWSH) Emanuel Duss 2020-04-11 16:17:35 +0200
89e49b676d

Merge pull request #178 from Techbrunch/patch-4 Swissky 2020-04-08 19:26:31 +0200
5902da38e4

Create web.web.config Techbrunch 2020-04-08 19:14:30 +0200
cea982c062 GraphQL Voyager - Represent any GraphQL API as an interactive graph Swissky 2020-04-04 22:33:28 +0200
6e7af5a267 Docker Registry - Pull/Download Swissky 2020-04-04 18:27:41 +0200
f748af16d2

Merge pull request #176 from Anon-Exploiter/patch-1 Swissky 2020-04-04 14:49:37 +0200
c9fcb58d57

Using JWT's module to encode payload with type None Syed Umar Arfeen 2020-04-04 16:03:56 +0500
78bd0867fe

Merge pull request #175 from 3rg1s/master Swissky 2020-04-04 02:22:44 +0200
009a2f9276

Update SQLite Injection.md fuxsocy.py 2020-04-03 23:15:05 +0000
b5cc379c4b

Merge pull request #173 from SakiiR/sakiir Swissky 2020-03-30 09:28:58 +0200
38c273ff00 Added IFS (WAF bypass) to Symfony Twig RCE SakiiR SakiiR 2020-03-29 23:23:26 +0200
8b78c2fe71 Added filter(system) twig RCE SakiiR SakiiR 2020-03-29 23:19:27 +0200
231e41a59b Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings Swissky 2020-03-29 22:35:26 +0200
268d85b4bf Symfony SSTI Twig RCE Swissky 2020-03-29 22:34:26 +0200
0ba5ad3e71

Merge pull request #172 from bash-c/patch-1 Swissky 2020-03-29 20:23:25 +0200
1d299f55c9

Delete unnecessary escape characters M4x 2020-03-29 23:40:39 +0800
be8f32b586 Docker escape and exploit Swissky 2020-03-29 16:48:09 +0200
95ab07b45e CloudTrail disable, GraphQL tool Swissky 2020-03-28 12:01:56 +0100
d489597357

Merge pull request #169 from guenicoe/patch-1 Swissky 2020-03-24 21:17:37 +0100
a3cc577ebd

added cmd on the USOSVC vuln guenicoe 2020-03-24 20:15:59 +0000
173366dc65

Merge pull request #167 from PixeLInc/patch-1 Swissky 2020-03-23 23:27:10 +0100
1b190939c4

Remove example from win priv esc PixeL 2020-03-23 17:17:42 -0500
6c38274bdb

Merge pull request #166 from fanixk/patch-1 Swissky 2020-03-22 21:56:05 +0100
2bdbb2dbc5

Update Windows - Privilege Escalation.md Fanis Katsimpas 2020-03-22 19:25:35 +0000
647d392c6f

Merge pull request #1 from swisskyrepo/master Fernandez, ReK2 2020-03-20 01:36:14 +0100
4303caa08c README - Summary update Swissky 2020-03-19 12:03:32 +0100
1538ccd7f2 Gaining AWS Console Access via API Keys Swissky 2020-03-19 11:59:49 +0100
57b500b48e

Merge pull request #165 from HLOverflow/master Swissky 2020-03-14 18:45:55 +0100
97dffcdc40

Update README.md HLOverflow 2020-03-15 01:11:47 +0800
3e184c10f9

Added additional character filter bypasses HLOverflow 2020-03-15 01:09:28 +0800
70182d32c9

Merge pull request #164 from Techbrunch/patch-3 Swissky 2020-03-11 16:33:27 +0100
3abf2aff2a

Update AWS SSRF tips Techbrunch 2020-03-11 15:20:51 +0100
c20f84d09c

Merge pull request #163 from SecGus/master Swissky 2020-03-09 20:06:32 +0100
fe4bdb0df4 Improvement to the SSTI RCE chiv 2020-03-09 18:19:33 +0000
1f3a94ba88 AWS SSM + Shadow copy attack Swissky 2020-03-06 15:30:38 +0100
5d87804f71 AWS EC2 Instance Connect + Lambda + SSM Swissky 2020-03-06 13:33:14 +0100
9207e0204c

Merge pull request #162 from SecGus/master Swissky 2020-03-02 15:22:44 +0100
29fac06023 From https://twitter.com/secgus chivato 2020-03-01 21:15:19 +0000
c19e36ad34 Azure AD Connect - MSOL Account's password and DCSync Swissky 2020-03-01 17:06:31 +0100
71a307a86b AWS - EC2 copy image Swissky 2020-02-29 12:56:00 +0100
74f2dfccca Kerberos Constrained Delegation Swissky 2020-02-23 21:20:46 +0100
c5ac4e9eff AWS Patterns Swissky 2020-02-23 20:58:53 +0100
0b14b12fb4

Merge pull request #159 from noraj/patch-1 Swissky 2020-02-22 01:17:03 +0100
3fad2f364c

add ruby script Alexandre ZANNI 2020-02-21 23:49:50 +0100
f28f83bda6

LDAPi: add scripts and dorks Alexandre ZANNI 2020-02-21 23:19:48 +0100
915946a343 Fix Cloud Training Swissky 2020-02-21 10:50:43 +0100
bda7100a77 Fix Cloud references Swissky 2020-02-21 10:47:16 +0100
984078050b Cloud - Pentest with AWS and Azure Swissky 2020-02-21 10:36:01 +0100
7f0650dfc0 IIS Raid Persistence Swissky 2020-02-20 16:51:22 +0100
73aa26ba68

Merge pull request #158 from 0xdf0xdf/master Swissky 2020-02-20 13:07:39 +0100
9d06e1297f added additional way to chain php filters 0xdf 2020-02-20 06:40:30 -0500
7d650e9622 fixed error in chaining php filters in File Inclusion page, added an additional example 0xdf 2020-02-20 06:30:28 -0500
c2292145c8

Merge pull request #157 from Stoo0rmq/patch-1 Swissky 2020-02-18 12:38:43 +0100
7be86354b2

Update File Inclusion Borja 2020-02-18 11:35:22 +0000
ba30618a8b Cobalt Strike - Artifact Swissky 2020-02-14 17:10:00 +0100
7cd49769be WMI + Cobalt Strike Swissky 2020-02-13 22:53:45 +0100
b76a23c77f

Merge pull request #156 from bhattsameer/patch-1 Swissky 2020-02-09 12:15:00 +0100
994e557178

Added more TTY Shell using perl and python Sameer Bhatt (debugger) 2020-02-09 12:46:18 +0530