mgeeky-Penetration-Testing-.../web/payloads/README.md

5 lines
609 B
Markdown
Raw Normal View History

2019-01-29 11:19:12 +01:00
## Web Applications penetration testing related PAYLOADS that are actually useful
2019-01-29 11:24:26 +01:00
- **`Server-Side-Template-Injections.txt`** - Various Server-Side Template Injection static payloads, targeting couple of various templating implementations (also some of the Client-Side ones like in AngularJS). The evaluated expression to look/grep for is: **1868686868** or **aaaaaaaaaaaaaaaaaaaaaabbbbbbbbbbbbbbbbbbbbbbbbb**. Use it with Burp Intruder's Grep functionality, or simply look out for that pattern while hanging around the application. ([gist](https://gist.github.com/mgeeky/2b660ab8d3946eec519731ed9ec5d25b))
2019-01-29 11:19:12 +01:00