ssti-payloads
WebHackersWeapons
ssti-payloads | WebHackersWeapons | |
---|---|---|
1 | 1 | |
560 | 3,657 | |
1.8% | - | |
0.0 | 8.4 | |
about 1 year ago | 9 days ago | |
Ruby | ||
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ssti-payloads
-
There are some script for automate SSTI attacks?
I'm doing a hackthebox challenge where you need to exploit Flask with SSTI. I searched for some SSTI payloads and found a lot of options.
WebHackersWeapons
What are some alternatives?
sql-injection-payload-list - 🎯 SQL Injection Payload List
interactsh - An OOB interaction gathering server and client library
xss-payload-list - 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
MobileHackersWeapons - Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
jaeles - The Swiss Army knife for automated Web Application Testing
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
port_ruby_to_crystal - A Ruby regex script for port ruby code to crystal easier, reduce friction.
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
mad-metasploit - Metasploit custom modules, plugins, resource script and.. awesome metasploit collection
tplmap - NO LONGER MAINTAINED - a pentest tool to detect and exploit SSTI
ansible-doc-generator - CLI for documenting Ansible roles into Markdown files.