目录导航
这个有效载荷列表包含了漏洞搜寻中使用的所有有效载荷。有些是我个人的,有些来自 orwa 和公共的。我希望这将有助于您进行漏洞搜寻之旅。
SQL注入、api、压缩包探测、目录扫描、后缀名、敏感文件、xss、ssrf等。
文件列表
1.txt
allsqli.txt
all_attacks.txt
apac.txt
api.txt
aspx.txt
bambda.txt
blindsqli.txt
cgi-bin.txt
cgi-files.txt
crlf.txt
directory_traversal.txt
directory_traversal_unix.txt
directory_traversal_win.txt
everything.txt
extensions.txt
fuzz.txt
fuzz_php_special.txt
god.txt
iis.txt
jsf.txt
jsp.txt
juicy_files.txt
kibana.txt
lfi.txt
param.txt
params.txt
phpmyadmin.txt
pl.txt
README.md
robots.txt
SQL.txt
sqldb.txt
sqli2.txt
ssrf.txt
ssti.txt
wordpress-random.txt
wp-content.txt
xml.txt
xor.txt
xss.txt
xsswafbypss.txt
zip.txt截图
项目地址
GitHub:
https://github.com/coffinxp/payloads
字典下载地址
转载请注明出处及链接