fuzzdb
xss-payload-list
fuzzdb | xss-payload-list | |
---|---|---|
4 | 6 | |
7,973 | 5,661 | |
0.8% | 3.1% | |
0.0 | 0.0 | |
6 months ago | 5 months ago | |
PHP | ||
GNU General Public License v3.0 or later | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
fuzzdb
-
A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
FuzzDB https://github.com/fuzzdb-project/fuzzdb
- Fuzzdb
-
Are there any resources to help me find external IP’s trying web app exploits?
fuzzdb
xss-payload-list
-
XSS example
Like an example XSS payload? Go nuts: https://github.com/payloadbox/xss-payload-list
-
Go with PHP
Otherwise, only vague and unsubstantiated claims, which does not help PHP nor any other programming language or framework.
[] https://github.com/payloadbox/xss-payload-list
- SC
- A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
- Cross Site Scripting ( XSS ) Vulnerability Payload List
-
Password protected website (no username) - best way in?
Tried it now, with the https://github.com/payloadbox/xss-payload-list/tree/master/Intruder list.
What are some alternatives?
OneListForAll - Rockyou for web fuzzing
ssti-payloads - 🎯 Server Side Template Injection Payloads
Open-Redirect-Payloads - Open Redirect Payloads
XSStrike - Most advanced XSS scanner.
fuzz.txt - Potentially dangerous files
sql-injection-payload-list - 🎯 SQL Injection Payload List
AwesomeXSS - Awesome XSS stuff
OWASP-Xenotix-XSS-Exploit-Framework - OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
Bug-Bounty-Wordlists - A repository that includes all the important wordlists used while bug hunting.
plugin-cloud-storage - The official cloud storage plugin for Payload
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
ppmap - A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.