README.md

# Payloads All The Things
A list of usefull payloads and bypasses for Web Application Security
Feel free to improve with your payloads (I <3 pull requests) :)

To improve:
* RCE
* SQL injection
* XXE
* SSRF
* Upload
* Tar command exec
* Traversal Directory
* XSS
* PHP Include
* CSV Injection
* PHP Serialization
CVE Heartbleed and Shellshcok added 2016-10-20 09:54:29 +07:00			`# Payloads All The Things`
Tar command exec 2016-10-18 18:36:18 +07:00			`A list of usefull payloads and bypasses for Web Application Security`
PHP object injection 2016-10-20 11:02:19 +07:00			`Feel free to improve with your payloads (I <3 pull requests) :)`
XXE payloads 2016-10-18 14:06:10 +07:00
			`To improve:`
			`* RCE`
			`* SQL injection`
			`* XXE`
Upload payloads 2016-10-18 18:13:23 +07:00			`* SSRF`
Tar command exec 2016-10-18 18:36:18 +07:00			`* Upload`
			`* Tar command exec`
XSS payloads 2016-10-19 23:39:07 +07:00			`* Traversal Directory`
			`* XSS`
PHP Include payloads 2016-10-20 09:39:06 +07:00			`* PHP Include`
Fix in juggling type + CSV injection 2016-10-20 10:50:12 +07:00			`* CSV Injection`
PHP object injection 2016-10-20 11:02:19 +07:00			`* PHP Serialization`