SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 payload Open-Source Projects
-
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
pwndrop
Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
-
PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
-
Chimera
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
-
RomBuster
RomBuster is a router exploitation tool that allows to disclosure network router admin password.
-
AMP-Research
Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks
-
badchars
Bad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Also https://github.com/swisskyrepo/PayloadsAllTheThings I'm sure there's a few test php files in here for filter bypasses too
Like an example XSS payload? Go nuts: https://github.com/payloadbox/xss-payload-list
Yeah, pretty close: "On-site request forgery"[0]
[0] https://github.com/daffainfo/AllAboutBugBounty/blob/master/O...
Pwndrop has a convenient ui for uploads/downloads and generates https & webdav links.
payloads related posts
- What are polyglots and how to use them as a pentester
- SC
- A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
- GitHub - daffainfo/AllAboutBugBounty: All about bug bounty (bypasses, payloads, and etc)
- Cyber Security resources
- Video file Reverse shell attack
- There are some script for automate SSTI attacks?
-
A note from our sponsor - SaaSHub
www.saashub.com | 26 Apr 2024
Index
What are some of the best open-source payload projects? This list will help you:
Project | Stars | |
---|---|---|
1 | PayloadsAllTheThings | 56,681 |
2 | xss-payload-list | 5,613 |
3 | bugbounty-cheatsheet | 5,555 |
4 | AllAboutBugBounty | 5,409 |
5 | sql-injection-payload-list | 4,304 |
6 | IntruderPayloads | 3,526 |
7 | payloads | 3,519 |
8 | usbrubberducky-payloads | 3,504 |
9 | HackVault | 1,876 |
10 | pwndrop | 1,833 |
11 | PoshC2 | 1,692 |
12 | Chimera | 1,260 |
13 | pixload | 1,151 |
14 | defcon27_csharp_workshop | 952 |
15 | Payloads | 842 |
16 | ssti-payloads | 560 |
17 | Open-Redirect-Payloads | 542 |
18 | RomBuster | 422 |
19 | AMP-Research | 315 |
20 | badchars | 259 |
21 | Web_Hacking | 186 |
22 | Metasploit-termux | 174 |
23 | csv-injection-payloads | 169 |
Sponsored