52 Open source projects that are alternatives of or similar to SSRF_payload

Common Web Managers Fuzz Wordlists

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

NodeJS Red-Team Cheat Sheet

CTF programs and writeups

Loki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.

A simple framework for sending test payloads for known web CVEs.

Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.

Modified Nuclei Templates Version to FUZZ Host Header

XSS Payload without Anything.

国光的手把手带你用 SSRF 打穿内网靶场源码

The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A ruby gem for defending against Server Side Request Forgery (SSRF) attacks

A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).

ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)

Nuclei Templates to reproduce Cracking the lens's Research

Bad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.

Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks

CVE-2020-36179~82 Jackson-databind SSRF&RCE

Git All the Payloads! A collection of web attack payloads.

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder

🎯 Open Redirect Payload List

🎯 RFI/LFI Payload List

The all-in-one Red Team extension for Web Pentester 🛠

🎯 Server Side Template Injection Payloads

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

A container repository for my public web hacks!

Undetectable Windows Payload Generation

Infection vector that bypasses AV, IDS, and IPS. (For now...)

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

All about bug bounty (bypasses, payloads, and etc)

🎯 SQL Injection Payload List

Use a Fake image.jpg to exploit targets (hide known file extensions)

Image Payload Creating/Injecting tools

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Writing custom backdoor payloads with C# - Defcon 27 Workshop

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Open Redirect Payloads

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).

A list of interesting payloads, tips and tricks for bug bounty hunters.

🎯 XML External Entity (XXE) Injection Payload List

Infosec Wordlists

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

SSRF (Server Side Request Forgery) testing resources

A list of resources for those interested in getting started in bug bounties

Extract server and IP address information from Browser SSRF

JAVA 漏洞靶场 (Vulnerability Environment For Java)

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Solutions and write-ups from security-based competitions also known as Capture The Flag competition

make http(s) request to prevent SSRF