fuzz.txt. Potentially dangerous files
3.3kWAF-bypass-Cheat-Sheet. Another way to bypass WAF Cheat Sheet (draft)
435PHP_imap_open_exploit. Bypassing disabled exec functions in PHP (c) CRLF
405ParamPamPam. Python
276CVE-2017-5124. Chrome < 62 uxss exploit (CVE-2017-5124)
160Safiler. Safari local file reader
122services-names-wordlist. services-names-wordlist
87CVE-2017-7089. Webkit uxss exploit (CVE-2017-7089)
63server-status-monitor. Apache server-status link parser
24Safari2000day. HTML
14SecretRadar. Gitleaks scours your repo. Trufflehog digs for secrets on your disk. Another secret scanner? Yep. Guilty as charged. Secret scanning isn't new. You'd think by now we wouldn't need another secret scanner. But I did it.
11Bo0oM.
7PayloadsAllTheThings. A list of useful payloads and bypass for Web Application Security and Pentest/CTF
5uxss-db. 🔪Browser vulnerabilities DB :skull_and_crossbones:
4pas. A modified version of the well-known webshell - P.A.S. by Profexer. Tries to solve the problem of detecting some requests and responses by various WAF/IDS.
4browsersec. Automatically exported from code.google.com/p/browsersec
3-. -
2dirsearch. Web path scanner
2p0f-mtu-script. WITCH?(VPN detector) source code
2