awesome-oneliner-bugbounty
ssti-payloads
awesome-oneliner-bugbounty | ssti-payloads | |
---|---|---|
2 | 1 | |
2,433 | 560 | |
- | 1.8% | |
0.0 | 0.0 | |
7 months ago | about 1 year ago | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-oneliner-bugbounty
ssti-payloads
-
There are some script for automate SSTI attacks?
I'm doing a hackthebox challenge where you need to exploit Flask with SSTI. I searched for some SSTI payloads and found a lot of options.
What are some alternatives?
awesome-bugbounty-tools - A curated list of various bug bounty tools
sql-injection-payload-list - 🎯 SQL Injection Payload List
SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
xss-payload-list - 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
HowToHunt - Collection of methodology and test case for various web vulnerabilities.
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
lit-bb-hack-tools - Little Bug Bounty & Hacking Tools⚔️
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Awesome-Hacking - A collection of various awesome lists for hackers, pentesters and security researchers
WebHackersWeapons - ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
tplmap - NO LONGER MAINTAINED - a pentest tool to detect and exploit SSTI