xsscx / Commodity Injection Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267
Programming Languages
javascript
184084 projects - #8 most used programming language
Projects that are alternatives of or similar to Commodity Injection Signatures
Penetration testing poc
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+1344.94%)
Mutual labels: xss, poc, rce, exploit
vaf
Vaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+10.11%)
Mutual labels: xss, fuzzing, burpsuite
Umbraco-RCE
Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
Stars: ✭ 61 (-77.15%)
Mutual labels: exploit, poc, rce
Intruderpayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+940.82%)
Mutual labels: burpsuite, injection, fuzzing
Cve 2019 1003000 Jenkins Rce Poc
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
Stars: ✭ 270 (+1.12%)
Mutual labels: exploit, poc, rce
Ciscoexploit
Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)
Stars: ✭ 73 (-72.66%)
Mutual labels: exploit, poc, rce
Hackvault
A container repository for my public web hacks!
Stars: ✭ 1,364 (+410.86%)
Mutual labels: exploit, xss, fuzzing
Exploit-Development
Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
Stars: ✭ 84 (-68.54%)
Mutual labels: exploit, poc, rce
NodeJS-Red-Team-Cheat-Sheet
NodeJS Red-Team Cheat Sheet
Stars: ✭ 121 (-54.68%)
Mutual labels: injection, rce
CVE-2022-21907-http.sys
Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
Stars: ✭ 67 (-74.91%)
Mutual labels: poc, rce
APSoft-Web-Scanner-v2
Powerful dork searcher and vulnerability scanner for windows platform
Stars: ✭ 96 (-64.04%)
Mutual labels: exploit, xss
CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
Stars: ✭ 760 (+184.64%)
Mutual labels: exploit, poc
Exploits
A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
Stars: ✭ 75 (-71.91%)
Mutual labels: exploit, poc
Scripts-Sploits
A number of scripts POC's and problems solved as pentests move along.
Stars: ✭ 37 (-86.14%)
Mutual labels: exploit, poc
#XSS.Cx Public Repo
Commodity Injection Signatures
Scraped from the Internet since 2015 and is not a ripoff of https://portswigger.net/research/one-xss-cheatsheet-to-rule-them-all which you should be using anyway.
Suggested Use:
-Include with Burp Intruder or Custom Scripts
-Manual Injection Testing with Well-Known Signatures
-Automated Fuzzing with a Wide-Range with Malicious Inputs
Send Pull Requests if you have unique inputs that should be included for distribution.
This Repo is frequently cloned and included into upstream distrbutions based on recent traffic in January 2021.
if anyone would like to see other changes, please open an Issue.
This Repo will soon get new fresh data from iPhone and Android Fuzzing using Corellium.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].