HowToHunt
ssti-payloads
Our great sponsors
HowToHunt | ssti-payloads | |
---|---|---|
2 | 1 | |
5,587 | 560 | |
- | 4.5% | |
6.3 | 0.0 | |
13 days ago | about 1 year ago | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
HowToHunt
ssti-payloads
-
There are some script for automate SSTI attacks?
I'm doing a hackthebox challenge where you need to exploit Flask with SSTI. I searched for some SSTI payloads and found a lot of options.
What are some alternatives?
pd-actions - Continuous recon and vulnerability assessment using Github Actions. [GET https://api.github.com/repos/projectdiscovery/pd-actions: 403 - Repository access blocked]
sql-injection-payload-list - 🎯 SQL Injection Payload List
Awesome-Bugbounty-Writeups - A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
xss-payload-list - 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
command-injection-payload-list - 🎯 Command Injection Payload List
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
PENTESTING-BIBLE - articles
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
AllAboutBugBounty - All about bug bounty (bypasses, payloads, and etc)
WebHackersWeapons - ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting