ffffffff0x/AboutSecurity: Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
2022-8-6 15:26:7 Author: github.com(查看原文) 阅读量:65 收藏

Latest commit

Files

Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

English | 简体中文



Manual

  • Dic
    • Auth : Certified dictionaries
      • Accounts and passwords.
    • Network : network (computing)
      • Excluded private IP segments, local IP segments, list of dns servers.
    • Port : Port Dictionary
      • Following the idea of port penetration, the service blast points carried by different ports are used as dictionary content.
    • Regular : Dictionary of rules
      • Various rules, arrangement of dictionaries.
    • Web : Web Dictionaries
      • As the name implies, burstable points that appear during web penetration serve as dictionary content.
  • Payload
    • Burp
    • CORS
    • email
    • Format
    • HPP
    • LFI
    • OOB
    • SQL-Inj
    • SSI
    • XSS
    • XXE
  • VPS(Not maintaining this section, please use the f8x tool)
    • Debian~ - Debian system infrastructure configuration.
    • Kali - Kali system infrastructure configuration.
    • RedHat~ - RedHat system infrastructure configuration.
  • Cheatsheet : Directly copy a pair during penetration testing for reference, information logging, teamwork, reporting, etc.

Disclaimer&License

  • This work is licensed under a CC BY-SA 4.0.
    • Share — copy and redistribute the material in any medium or format
    • Adapt — remix, transform, and build upon the material for any purpose, even commercially.
    • Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
    • ShareAlike — If you remix, transform, or build upon the material, you must distribute your contributions under the same license as the original.
    • No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.
  • Note: All documents in this project are for study and research purposes only, please do not use the documents in the project for illegal purposes, any negative impact caused by anyone has nothing to do with me.
  • Note: Downloading this repository will most likely result in your anti-virus software reporting viruses, please whitelist the project path. There are no malicious files in this project, however, due to the risk of local files containing attacks, it is not recommended to store these files on servers or other critical systems.

create by ffffffff0x


文章来源: https://github.com/ffffffff0x/AboutSecurity
如有侵权请联系:admin#unsafe.sh