/weapons4pentester-unrestricted-uploads

:hocho: this repo contains required files for web application pentests

Primary LanguageASP

🔪 weapons4pentester

This repo contains useful files for forms that needed validation client-side or server-side when testing the web app. Also there are 3 different types per file.

If you think that this repository should contain any file, please add them! Or if you think a new technique for this repo, please open an issue!

Files

ASP, CSV, DTD, HTM, JPEG, MPP, PDF, PPT, SVG, TXT, XML, ASPX, DOC, EPUB, HTML, JPG, ODP, PHP, TIFF, VCF,ZIP, CER, DOCX, GIF, ICS, MP4, ODS, PNG, RTF, TSV, XLSX

Types

These files usually use the following extensions:

  • w4p.extension
  • w4p"><sVg onlOad=prompt(document.domain)>.extension
  • w4p"&gt'>%22>\x22>%2522><sVg onlOad=prompt(document.domain)>.extension