GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → grayddq → SSRF_payload

grayddq / SSRF_payload

Licence: other
本脚本旨在生成各类畸形URL链接,进行探测使用的payload,尝试绕过服务端ssrf限制。

Programming Languages

python
139335 projects - #7 most used programming language

Labels

payloadsssrf

Projects that are alternatives of or similar to SSRF payload

CVE-2020-36179
CVE-2020-36179~82 Jackson-databind SSRF&RCE
Stars: ✭ 77 (+175%)
Mutual labels:  ssrf
window-rat
The purpose of this tool is to test the window10 defender protection and also other antivirus protection.
Stars: ✭ 59 (+110.71%)
Mutual labels:  payloads
Loki.Rat
Loki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.
Stars: ✭ 63 (+125%)
Mutual labels:  payloads
badchars
Bad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.
Stars: ✭ 178 (+535.71%)
Mutual labels:  payloads
ssrf filter
A ruby gem for defending against Server Side Request Forgery (SSRF) attacks
Stars: ✭ 68 (+142.86%)
Mutual labels:  ssrf
XSS-Payload-without-Anything
XSS Payload without Anything.
Stars: ✭ 74 (+164.29%)
Mutual labels:  payloads
Intruderpayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+9825%)
Mutual labels:  payloads
Payloads
Payload Arsenal for Pentration Tester and Bug Bounty Hunters
Stars: ✭ 421 (+1403.57%)
Mutual labels:  payloads
PayloadsAll
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 31 (+10.71%)
Mutual labels:  payloads
web-cve-tests
A simple framework for sending test payloads for known web CVEs.
Stars: ✭ 120 (+328.57%)
Mutual labels:  payloads
Blind-SSRF
Nuclei Templates to reproduce Cracking the lens's Research
Stars: ✭ 111 (+296.43%)
Mutual labels:  ssrf
proxylogscan
A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
Stars: ✭ 145 (+417.86%)
Mutual labels:  ssrf
Virtual-Host
Modified Nuclei Templates Version to FUZZ Host Header
Stars: ✭ 38 (+35.71%)
Mutual labels:  ssrf
AMP-Research
Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks
Stars: ✭ 246 (+778.57%)
Mutual labels:  payloads
ctf
CTF programs and writeups
Stars: ✭ 22 (-21.43%)
Mutual labels:  ssrf
Payloads
Git All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+10121.43%)
Mutual labels:  payloads
ssrf-vuls
国光的手把手带你用 SSRF 打穿内网靶场源码
Stars: ✭ 235 (+739.29%)
Mutual labels:  ssrf
web-fuzz-wordlists
Common Web Managers Fuzz Wordlists
Stars: ✭ 137 (+389.29%)
Mutual labels:  payloads
NodeJS-Red-Team-Cheat-Sheet
NodeJS Red-Team Cheat Sheet
Stars: ✭ 121 (+332.14%)
Mutual labels:  payloads
bulkssrf
Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.
Stars: ✭ 35 (+25%)
Mutual labels:  ssrf
View All Similar Projects ➔

SSR_payload 0.1

本脚本旨在生成各类畸形绕过ssrf限制的ip扫描payload

Author

咚咚呛 、D4Vinci

部分代码参考了作者D4Vinci的代码,感谢作者无私的奉献

如有其他建议,可联系微信280495355

Test Environment

centos 7

python 2.7

Tree

SSRF_payload
----SSRF_payload.py		   	   #程序主程序

Deploy

脚本放置在任意目录中
1)$ python SRF_payload.py 尝试运行并生成关于127.0.0.1的payload

Config

配置参数:SSRF_payload.py

# 修改扫描或访问的ip地址
ip = '127.0.0.1'
# 添加访问的域名白名单,通常会用于绕过服务端域名白名单的限制
domain = 'www.baidu.com'

Screenshot

Screenshot

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].