Skip to content

v0.5.1
Compare
Choose a tag to compare
@Marven11 Marven11 released this 26 Jul 19:54
· 325 commits to main since this release
v0.5.1
650e1de

So I finally closed issue #10
New features:

  • --eval-args-payload option, pass payload in the GET/POST args, and use SSTI to execute it.
  • --proxy option for just setting proxy.

Optimization:

  • Stop adding brackets when getting attributes of something
  • add a internal generate target ONEOF for generate one of the requirements, now the payload generator can genrate things like "__g""lobals__" besides "_""_""g""l""o""b""a""l""s""_""_"
  • generate target EVAL now requires a generate target instead of a string, useful for generating things like eval(request.value.x)

Full Changelog: v0.4.8...v0.5.1

Assets 2
Loading