Web Application Security
This repo contains some attack payloads collected from multiple sources and from my personal experience.
- Most of the payloads - https://github.com/infosec-au/webappsec-toolkit/tree/master/PoCs
- CSRF PoC for REST - http://edu.williamdurand.fr/web-security-101-slides/#/9/4
- XXE Payloads - https://gist.github.com/staaldraad/01415b990939494879b4