CyberCheatsheets

Web Application Security

HTTP-specific testing: injection, authentication, and application flaws.

Arjun

Web

HTTP parameter discovery tool for finding hidden GET and POST parameters.

discoveryparametersrecon

Burp Suite

Web

Integrated web proxy and testing platform for intercepting, modifying, and automating HTTP traffic.

intruderproxyrepeaterweb

Command Injection

Web

OS command injection payloads, separators, blind detection, and filter bypasses for achieving RCE on authorized targets.

command-injectioninjectionowasprce

commix

Web

Automated command injection detection and exploitation in web parameters and headers.

command-injectionos-shellrce

Dalfox

Web

Fast parameter-based XSS scanner and proof-of-concept generator for web apps.

domreflectedxss

DroopeScan

Web

CMS scanner focused on Drupal, Silverstripe, and WordPress plugin enumeration.

cmsdrupalsilverstripe

JoomScan

Web

Joomla CMS vulnerability scanner and version or component enumerator.

cmsenumerationjoomla

JWT Attacks

Web

JSON Web Token attacks: alg=none, weak secret cracking, key confusion (RS256→HS256), and claim tampering on authorized targets.

authenticationjson-web-tokenjwtowasp

jwt_tool

Web

JSON Web Token testing for algorithm confusion, weak secrets, and claim tampering.

authenticationcryptojwt

LFI / Path Traversal

Web

Local file inclusion and directory traversal payloads, PHP wrappers, and log-poisoning RCE for authorized testing.

lfiowasppath-traversalrfi

mitmproxy

Web

Interactive TLS-capable HTTP proxy for intercepting, replaying, and scripting web traffic.

interceptionproxytls

OWASP ZAP

Web

Open-source web app security proxy with passive/active scanning and automation API.

automationproxyscanner

ParamSpider

Web

Mines archived URLs to extract unique parameters for a domain from web archives.

parametersreconwayback

SQL Injection

Web

Manual SQL injection payloads and techniques for detection, UNION extraction, blind, and authentication bypass on authorized targets.

databaseinjectionowaspsqli

sqlmap

Web

Automated SQL injection detection and exploitation for web parameters, headers, and cookies.

databaseinjectionsqli

SSRF (Server-Side Request Forgery)

Web

Server-side request forgery payloads: cloud metadata access, internal port scanning, filter bypasses, and blind SSRF detection.

cloudinjectionowaspssrf

SSRFmap

Web

SSRF exploitation framework with modules for cloud metadata, port scan, and shell.

cloudinternalssrf

tplmap

Web

Server-Side Template Injection detection and exploitation for multiple template engines.

rcesstitemplate-injection

WPScan

Web

WordPress security scanner for users, plugins, themes, and known vulnerabilities.

cmsenumerationwordpress

x8

Web

Hidden parameter discovery via response status, body, and reflection diffing.

fuzzinghiddenparameters

XSS (Cross-Site Scripting)

Web

Cross-site scripting payloads and filter bypasses for reflected, stored, and DOM-based XSS on authorized targets.

injectionjavascriptowaspweb

XSStrike

Web

Advanced XSS detection with context analysis, fuzzing, and WAF-aware payload generation.

fuzzingwaf-bypassxss

XXE (XML External Entity)

Web

XML External Entity payloads for file read, SSRF, blind out-of-band exfiltration, and denial of service on authorized targets.

injectionowaspwebxml