Payload Categories

Account Takeover Account Takeover (ATO) is a significant threat in the cybersecurity landscape, involving unauthorized access to users' accounts through various attack vectors. Summary Password Reset Feature Password Reset Token Leak via Referrer Account Takeover Through Password

API Key and Token Leaks API keys and tokens are forms of authentication commonly used to manage permissions and access to both public and private services. Leaking these sensitive pieces of data can lead to unauthorized access, compromised security, and potential data breaches. S

Brute Force & Rate Limit Summary Tools Bruteforce Burp Suite Intruder FFUF Rate Limit TLS Stack - JA3 Network IPv4 Network IPv6 References Tools ZephrFish/OmniProx - IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare. ddd/gpb - Brutefo

Business Logic Errors Business logic errors, also known as business logic flaws, are a type of application vulnerability that stems from the application's business logic, which is the part of the program that deals with real-world business rules and processes. These rules could i

Clickjacking Clickjacking is a type of web security vulnerability where a malicious website tricks a user into clicking on something different from what the user perceives, potentially causing the user to perform unintended actions without their knowledge or consent. Users are tr

Client Side Path Traversal Client-Side Path Traversal (CSPT), sometimes also referred to as "On-site Request Forgery," is a vulnerability that can be exploited as a tool for CSRF or XSS attacks. It takes advantage of the client side's ability to make requests using fetch to a URL

Command Injection Command injection is a security vulnerability that allows an attacker to execute arbitrary commands inside a vulnerable application. Summary Tools Methodology Basic Commands Chaining Commands Argument Injection Inside A Command Filter Bypasses Bypass Without Spa

CORS Misconfiguration A site-wide CORS misconfiguration was in place for an API domain. This allowed an attacker to make cross origin requests on behalf of the user as the application did not whitelist the Origin header and had Access-Control-Allow-Credentials: true meaning we co

Carriage Return Line Feed CRLF Injection is a web security vulnerability that arises when an attacker injects unexpected Carriage Return (CR) (\r) and Line Feed (LF) (\n) characters into an application. These characters are used to signify the end of a line and the start of a new

Cross-Site Request Forgery Cross-Site Request Forgery (CSRF/XSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated. CSRF attacks specifically target state-changing requests, not theft of data, since the

CSS Injection CSS Injection is a vulnerability that occurs when an application allows untrusted CSS to be injected into a web page. This can be exploited to exfiltrate sensitive data, such as CSRF tokens or other secrets, by manipulating the page layout or triggering network requ

CSV Injection Many web applications allow the user to download content such as templates for invoices or user settings to a CSV file. Many users choose to open the CSV file in either Excel, Libre Office or Open Office. When a web application does not properly validate the content