a collection of commonly used payloads needed for web application testing (fuzzing), the payloads have been collected from different resources and will be updated frequently. if you wanna contribute by sharing your own payloads don’t hesitate to join our channel on telegram

intruder payloads

Table of Contents

XSS payloads

https://0xsp.com/storageCenter/1589118426.txt

XXE Payloads

https://0xsp.com/storageCenter/1589118968.txt

Command injection payloads

windows

https://0xsp.com/storageCenter/1589119529.txt

Linux/unix

https://0xsp.com/storageCenter/1589119581.txt

LFI / RFI payloads

https://0xsp.com/storageCenter/1589119620.txt

SQL/MSSQL/nosql payloads

https://0xsp.com/storageCenter/1589119036.zip

open redirect payloads

https://0xsp.com/storageCenter/1589119678.txt

Please follow and like us:

zux0x3a

offensive security expert and founder of 0xsp security research and development (SRD), passionate about hacking and breaking stuff, coder and maintainer of 0xsp-mongoose RED, and many other open-source projects

0xsp.com

Web attacks payloads collections