🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
翻译 - 🎯跨站点脚本(XSS)漏洞有效负载列表
A list of interesting payloads, tips and tricks for bug bounty hunters.
The all-in-one browser extension for offensive security professionals 🛠
翻译 - Web Pentester的多人红队扩展🛠
The Official USB Rubber Ducky Payload Repository
翻译 - The Official USB Rubber Ducky Payload Repository
#安全#A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
翻译 - Burpsuite入侵者有效负载,BurpBounty有效负载,模糊列表,恶意文件上传以及网络渗透测试方法和清单的集合。
Git All the Payloads! A collection of web attack payloads.
Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
翻译 - 为红色团队成员提供的可自行部署的文件托管服务,允许通过HTTP和WebDAV轻松上传和共享有效负载。
#夺旗赛 (CTF) 和网络安全资源#A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
翻译 - 微小的XSS有效载荷的集合,可以在不同的上下文中使用。
A container repository for my public web hacks!
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
Undetectable Windows Payload Generation
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
翻译 - BurpCrypto是burpsuite加密插件的集合,支持AES / RSA / DES / ExecJs(在burpsuite中执行JS加密代码)。
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Active Directory and Internal Pentest Cheatsheets
Image Payload Creating/Injecting tools
翻译 - 图像有效载荷创建/注入工具
🎯 XML External Entity (XXE) Injection Payload List