ssti-payloads
pixload
ssti-payloads | pixload | |
---|---|---|
1 | 2 | |
560 | 1,154 | |
1.8% | - | |
0.0 | 4.5 | |
about 1 year ago | 5 months ago | |
Perl | ||
MIT License | Do What The F*ck You Want To Public License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ssti-payloads
-
There are some script for automate SSTI attacks?
I'm doing a hackthebox challenge where you need to exploit Flask with SSTI. I searched for some SSTI payloads and found a lot of options.
pixload
-
Video file Reverse shell attack
Check out Pixload https://github.com/chinarulezzz/pixload
-
Executable PNGs
This might be of interest - https://github.com/chinarulezzz/pixload
What are some alternatives?
sql-injection-payload-list - 🎯 SQL Injection Payload List
Paybag - Simple and easy Metasploit payload generator for Linux & Termux
xss-payload-list - 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
sherloq - An open-source digital image forensic toolset
bugbounty-cheatsheet - A list of interesting payloads, tips and tricks for bug bounty hunters.
Chimera - Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
Octo - A Chip8 IDE
WebHackersWeapons - ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
injector - Library for injecting a shared library into a Linux or Windows process