payload

There are 85 repositories under payload topic.

• PayloadsAllTheThings

  swisskyrepo / PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  pentestpayloadbypassweb-applicationhackingvulnerabilitybountymethodologyprivilege-escalationpenetration-testingcheatsheetsecurityenumerationbugbountyredteampayloadshacktoberfest
  Language:Python 58563
• payload

  payloadcms / payload

  Payload is the open-source, fullstack Next.js framework, giving you instant backend superpowers. Get a full TypeScript backend and admin panel instantly. Use Payload as a headless CMS or for building powerful applications.

  cmscontent-managementcontent-management-systemexpressgraphqlheadlessheadless-cmsjamstackjavascriptmit-licensemongodbnextjsnodejsopen-sourcepayloadpayloadcmspostgresreacttypescript
  Language:TypeScript 21851

• n1nj4sec / pupy

  Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

  androidbackdoorlinuxmac-osmeterpreterpayloadpentestingpost-exploitationpupypythonratreflective-injectionremote-accessremote-admin-toolreverse-shellshellwindows
  Language:Python 8242

• payloadbox / xss-payload-list

  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

  bugbountycross-site-scriptingdom-basedpayloadpayloadsreflected-xss-vulnerabilitiesself-xsswebsecuritywebsite-vulnerabilityxssxss-attacksxss-detectionxss-exploitationxss-injectionxss-payloadxss-payloadsxss-pocxss-scannerxss-scannersxss-vulnerability
  5925

• daffainfo / AllAboutBugBounty

  All about bug bounty (bypasses, payloads, and etc)

  bugbugbountybugbountytipsbypasshackinginfosecpayloadpayloadspenetration-testingpentestreconnaissancesecurityvulnerability
  5590
• RedTeam-Tools

  A-poc / RedTeam-Tools

  Tools and Techniques for Red Team / Penetration Testing

  cheatsheetcybersecurityhackingpenetration-testingred-teamsecurity-toolslinuxresourcestoolswindowsenumerationpayloadpentestpentest-toolsred-team-toolsmitre-attackredteam
  5509

• s0md3v / AwesomeXSS

  Awesome XSS stuff

  payloadpayload-listxssxss-cheatsheetxss-detectionxss-payloads
  Language:JavaScript 4710

• payloadbox / sql-injection-payload-list

  🎯 SQL Injection Payload List

  sql-injectionattackersql-injection-attackssql-injection-proofsql-injection-exploitationsql-injectionssql-injection-payloadsinjection-payloadssql-injection-filterersql-injection-attackowasp-top-10payloadspayloadwebsecuritybugbountysecurity-researchhackingsql-injectinjection-attacksinjection
  4607

• arismelachroinos / lscript

  The LAZY script will make your life easier, and of course faster.

  kali-scriptskali-linuxshell-scriptpayload-generatorpayloadwifi-testingpenetration-testingpentestingpentest-toolwifi-passwordwpa2-handshakewpa-crackerpixie-dustmetasploit-frameworketernalblue-doublepulsar-metasploitwifiphisherantivirus-evasionbypass-avbypass-antivirussqlinjection
  Language:Shell 3988

• foospidy / payloads

  Git All the Payloads! A collection of web attack payloads.

  appseccybersecurityhackingpasswordspayloadpayloadspentestsqliweb-attack-payloadsxss
  Language:Shell 3567

• nathanlopez / Stitch

  Python Remote Administration Tool (RAT)

  cross-platformkeyloggerlinuxmac-osxnsispayloadpythonratreverse-shellwindows
  Language:Python 2999

• payloadbox / command-injection-payload-list

  🎯 Command Injection Payload List

  applicationapplication-securitybugbountycommandcommand-injectioninjectionlinuxmacososos-injectionpayloadpayload-listsecuritysecurity-researchsecurity-testingsecurity-vulnerabilityunixvulnerabilityvulnerability-researchwindows
  2784
• pentest-guide

  Voorivex / pentest-guide

  Penetration tests guide based on OWASP including test cases, resources and examples.

  bugbountybypassowasp-testspayloadpenetration-testingpentestvulnerabilitywriteup
  2406

• tiagorlampert / CHAOS

  :fire: CHAOS is a free and open-source Remote Administration Tool that allow generate binaries to control remote operating systems.

  chaosgolanghackinghacking-toolhacktoberfestpayloadremote-admin-toolremote-administration-toolremote-control
  Language:Go 2279

• Ascotbe / Medusa

  :cat2:Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

  cobaltstrikecvednslogemailexpmailmedusametasploit-frameworkpayloadpocreadteamvirusxss
  Language:Python 2120

• eliboa / TegraRcmGUI

  C++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)

  exploitguihacknintendo-switchpayloadswitchtegrarcm
  Language:C++ 1876

• ssl / ezXSS

  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  payloadxssblindphptestxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-injectionxss-scannerblind-xsseasy-to-useeasybugbugbountypenetration-testingalertredteamredteaming
  Language:PHP 1830

• pen4uin / java-memshell-generator

  一款支持高度自定义的 Java 内存马生成工具｜A highly customizable Java memory-shell generation tool.

  memshellwebshellpayloadrcejava
  Language:Java 1451

• swagkarna / Defeat-Defender-V1.2.0

  Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

  bypassdefenderantivirusfudmalwarepayloadmalware-dropperbypass-antivirusundetectableav-evasiondropperhackinghack-toolbypass-defenderhackwindowsdisable-windows-defenderbatchproof-of-concept
  Language:Batchfile 1410

• oddcod3 / Phantom-Evasion

  Python antivirus evasion tool

  antivirusapkinjectiondynamic-analysisevasionmsfvenomobfuscatorpayload
  Language:Python 1379

• tokyoneon / Chimera

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

  bypass-antivirusantivirus-evasionantivirusattackoffensive-securitykali-scriptskali-scriptkali-linuxkaliinformation-securityreverse-shellpayloadpayloadspenetration-testingpayload-generatorshellshell-scriptsamsi
  Language:PowerShell 1372

• MTK911 / Attiny85

  RubberDucky like payloads for DigiSpark Attiny85

  uac-bypassdigisparkdigispark-scriptsattiny85rubberduckypayloadhid-injectionhid-attacksarduinopentestingwifi-passwordpentest-toolpentesting-windowspentest-windowsbadusbrubber-duckydigispark-payloadducky-payloadshackinghack
  Language:C++ 1360

• infobyte / evilgrade

  Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

  securityupdateevilgradefakepentestpenetrationpayloadmitm
  Language:Perl 1260

• g0tmi1k / msfpc

  MSFvenom Payload Creator (MSFPC)

  kalikali-linuxmetasploitmetasploit-frameworkmpcmsfpcmsfvenommsfvenom-payloadpayloadpayload-generationpayload-generator
  Language:Shell 1196

• EgeBalci / amber

  Reflective PE packer.

  packerpecrypterassemblystubshellcodeshellcode-loaderpayloadamber
  Language:Go 1149

• screetsec / Brutal

  Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

  arduinoarduino-librarybadusbhackerhackingpayloadpenetrationpenetration-testingpowershell-attackrubberduckyteensyusb
  Language:C++ 1068

• payloadbox / xxe-injection-payload-list

  🎯 XML External Entity (XXE) Injection Payload List

  bug-bountybugbountycyber-securitycybersecurityhackinginformation-securityinfosecpayloadpayloadsweb-application-securitywebsecuritywebsecurity-referencexmlxml-entityxxexxe-examplexxe-injectionxxe-payloadxxe-payload-listxxe-payloads
  1045

• Athena-OS / athena

  Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!

  cybersecurityhackinglearninglinuxospayloadpentestingsecuritysecurity-toolsarchlinux
  Language:Lua 1004
• ToRat

  lu4p / ToRat

  ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

  remote-admin-tooltorreverse-shellgolangpersistencekeyloggerreverse-shellstransportshell-reverseuac-bypassprivilege-escalationuacbypasspost-exploitationratwindowscommand-and-controlcross-platformpayloadlinuxrpc
  Language:Go 961
• AboutSecurity

  ffffffff0x / AboutSecurity

  Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.

  bountybypasscheatsheetctfdictionaryffffffff0xfuzzhackinginfosecinfrastructuremethodologypayloadpenetration-testingpentestpentestingredteamsecurity
  Language:HTML 951

• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words

  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

  securityexploitlog4jhackingcybersecuritywriteupsbugbountycvepentestpayloadred-teambugbounttipsbugbounty-writeupssecurity-writeupspentestingcve-2021-44228cve-2021-45046cve-2021-45105poc
  Language:Java 933

• Hack-with-Github / Awesome-Security-Gists

  A collection of various GitHub gists for hackers, pentesters and security researchers

  infosecpayloadpentestpetyaprivacysecurity-gistsxxe-payloads
  874

• botesjuan / Burp-Suite-Certified-Practitioner-Exam-Study

  Burp Suite Certified Practitioner Exam Study

  bscpburppayloadpentestingportswiggervulnerabilityxss
  Language:Python 845

• sh377c0d3 / Payloads

  Payload Arsenal for Pentration Tester and Bug Bounty Hunters

  bugbountybugbounty-toolpayloadpayloadspayloads-databasepenetration-testing
  Language:PHP 843

• xajkep / wordlists

  Infosec Wordlists and more.

  infosecsecurityfuzzingwordlistspayloadsdiscoveryrecondictionarypayloadregex-pattern
  Language:Python 729

• Hax4us / Apkmod

  Apkmod can decompile, recompile, sign APK, and bind the payload with any legit APP

  aapt2apkapkmodapktoolbinddecompilekalipayloadrecompilesigningtermux
  Language:Shell 706