├── .gitignore ├── LICENSE ├── README.md ├── ctf ├── defcon20.txt.gz ├── ists12_2015.txt.gz ├── maccdc2010.txt.gz ├── maccdc2011.txt.gz └── maccdc2012.txt.gz ├── get.sh ├── other ├── codeinjection │ ├── fede.txt │ └── struts.txt ├── commandinjection │ ├── ismailtasdelen-unix.txt │ └── ismailtasdelen-windows.txt ├── sqli │ ├── c0rni3sm.txt │ ├── camoufl4g3.txt │ ├── d0znpp.txt │ ├── harisec.txt │ ├── jstnkndy.txt │ ├── libinjection-bypasses.txt │ └── sqlifuzzer.txt ├── traversal │ └── dotdotpwn.txt └── xss │ ├── 0xsobky.txt │ ├── 787373.txt │ ├── XssPayloads.txt │ ├── alternume0.txt │ ├── bhandarkar.txt │ ├── billsempf.txt │ ├── d3adend.org.txt │ ├── ismailtasdelen.txt │ ├── jsf__k.txt │ ├── kirankarnad.txt │ ├── packetstorm.txt │ ├── rafaybaloch.txt │ ├── reddit_xss_get.txt │ ├── secgeek.txt │ ├── smeegesec.com.txt │ ├── soaj1664ashar.txt │ └── xssdb.txt └── owasp ├── dirbuster ├── apache-user-enum-1.0.txt ├── apache-user-enum-2.0.txt ├── directory-list-1.0.txt ├── directory-list-2.3-big.txt ├── directory-list-2.3-medium.txt ├── directory-list-2.3-small.txt ├── directory-list-lowercase-2.3-big.txt ├── directory-list-lowercase-2.3-medium.txt └── directory-list-lowercase-2.3-small.txt ├── fuzzing_code_database ├── directory_traversal │ ├── deep_traversal.txt │ └── directory_traversal.txt ├── dirs │ ├── adobe_xml_files.txt │ ├── cgi_common.txt │ ├── coldfusion_common.txt │ ├── lotus_common.txt │ ├── microsoft_common.txt │ ├── sap_common.txt │ └── windows_cgi_common.txt ├── format_string.txt ├── http │ └── verbs.txt ├── sqli │ └── sqli.txt ├── ssi │ └── ssi.txt └── xss │ ├── common.txt │ ├── discovery.txt │ ├── full.txt │ └── xml.txt └── jbrofuzz ├── http_verbs.txt ├── iis_cgi.txt ├── ldap.txt ├── sqli.txt ├── windows_variables.txt ├── xpath.txt └── xss.txt /.gitignore: -------------------------------------------------------------------------------- 1 | # mac ds_ files 2 | *.DS_Store 3 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/README.md -------------------------------------------------------------------------------- /ctf/defcon20.txt.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/ctf/defcon20.txt.gz -------------------------------------------------------------------------------- /ctf/ists12_2015.txt.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/ctf/ists12_2015.txt.gz -------------------------------------------------------------------------------- /ctf/maccdc2010.txt.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/ctf/maccdc2010.txt.gz -------------------------------------------------------------------------------- /ctf/maccdc2011.txt.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/ctf/maccdc2011.txt.gz -------------------------------------------------------------------------------- /ctf/maccdc2012.txt.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/ctf/maccdc2012.txt.gz -------------------------------------------------------------------------------- /get.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/get.sh -------------------------------------------------------------------------------- /other/codeinjection/fede.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/codeinjection/fede.txt -------------------------------------------------------------------------------- /other/codeinjection/struts.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/codeinjection/struts.txt -------------------------------------------------------------------------------- /other/commandinjection/ismailtasdelen-unix.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/commandinjection/ismailtasdelen-unix.txt -------------------------------------------------------------------------------- /other/commandinjection/ismailtasdelen-windows.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/commandinjection/ismailtasdelen-windows.txt -------------------------------------------------------------------------------- /other/sqli/c0rni3sm.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/c0rni3sm.txt -------------------------------------------------------------------------------- /other/sqli/camoufl4g3.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/camoufl4g3.txt -------------------------------------------------------------------------------- /other/sqli/d0znpp.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/d0znpp.txt -------------------------------------------------------------------------------- /other/sqli/harisec.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/harisec.txt -------------------------------------------------------------------------------- /other/sqli/jstnkndy.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/jstnkndy.txt -------------------------------------------------------------------------------- /other/sqli/libinjection-bypasses.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/libinjection-bypasses.txt -------------------------------------------------------------------------------- /other/sqli/sqlifuzzer.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/sqli/sqlifuzzer.txt -------------------------------------------------------------------------------- /other/traversal/dotdotpwn.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/traversal/dotdotpwn.txt -------------------------------------------------------------------------------- /other/xss/0xsobky.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/0xsobky.txt -------------------------------------------------------------------------------- /other/xss/787373.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/787373.txt -------------------------------------------------------------------------------- /other/xss/XssPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/XssPayloads.txt -------------------------------------------------------------------------------- /other/xss/alternume0.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/alternume0.txt -------------------------------------------------------------------------------- /other/xss/bhandarkar.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/bhandarkar.txt -------------------------------------------------------------------------------- /other/xss/billsempf.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/billsempf.txt -------------------------------------------------------------------------------- /other/xss/d3adend.org.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/d3adend.org.txt -------------------------------------------------------------------------------- /other/xss/ismailtasdelen.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/ismailtasdelen.txt -------------------------------------------------------------------------------- /other/xss/jsf__k.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/jsf__k.txt -------------------------------------------------------------------------------- /other/xss/kirankarnad.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/kirankarnad.txt -------------------------------------------------------------------------------- /other/xss/packetstorm.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/packetstorm.txt -------------------------------------------------------------------------------- /other/xss/rafaybaloch.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/rafaybaloch.txt -------------------------------------------------------------------------------- /other/xss/reddit_xss_get.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/reddit_xss_get.txt -------------------------------------------------------------------------------- /other/xss/secgeek.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/secgeek.txt -------------------------------------------------------------------------------- /other/xss/smeegesec.com.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/smeegesec.com.txt -------------------------------------------------------------------------------- /other/xss/soaj1664ashar.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/soaj1664ashar.txt -------------------------------------------------------------------------------- /other/xss/xssdb.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/other/xss/xssdb.txt -------------------------------------------------------------------------------- /owasp/dirbuster/apache-user-enum-1.0.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/apache-user-enum-1.0.txt -------------------------------------------------------------------------------- /owasp/dirbuster/apache-user-enum-2.0.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/apache-user-enum-2.0.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-1.0.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-1.0.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-2.3-big.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-2.3-big.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-2.3-medium.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-2.3-medium.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-2.3-small.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-2.3-small.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-lowercase-2.3-big.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-lowercase-2.3-big.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-lowercase-2.3-medium.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-lowercase-2.3-medium.txt -------------------------------------------------------------------------------- /owasp/dirbuster/directory-list-lowercase-2.3-small.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/dirbuster/directory-list-lowercase-2.3-small.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/directory_traversal/deep_traversal.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/directory_traversal/deep_traversal.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/directory_traversal/directory_traversal.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/directory_traversal/directory_traversal.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/adobe_xml_files.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/adobe_xml_files.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/cgi_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/cgi_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/coldfusion_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/coldfusion_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/lotus_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/lotus_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/microsoft_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/microsoft_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/sap_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/sap_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/dirs/windows_cgi_common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/dirs/windows_cgi_common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/format_string.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/format_string.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/http/verbs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/http/verbs.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/sqli/sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/sqli/sqli.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/ssi/ssi.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/ssi/ssi.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/xss/common.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/xss/common.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/xss/discovery.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/xss/discovery.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/xss/full.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/xss/full.txt -------------------------------------------------------------------------------- /owasp/fuzzing_code_database/xss/xml.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/fuzzing_code_database/xss/xml.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/http_verbs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/http_verbs.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/iis_cgi.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/iis_cgi.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/ldap.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/ldap.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/sqli.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/sqli.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/windows_variables.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/windows_variables.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/xpath.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/xpath.txt -------------------------------------------------------------------------------- /owasp/jbrofuzz/xss.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/foospidy/payloads/HEAD/owasp/jbrofuzz/xss.txt --------------------------------------------------------------------------------