XSS Payloads
Context-aware: HTML attribute, JavaScript string, URL parameter, JSON value, and SVG-based payloads with WAF bypass variants.
EXPLOIT
Free account required
Payload Forge
Generate context-aware XSS, SQLi, SSRF, and SSTI payloads for security testing.
Generate bypass-aware payloads for every major vulnerability class. Context-sensitive encoding (URL, HTML, JavaScript, base64), WAF evasion variants, and format-specific payloads for JSON, XML, and HTTP headers. Every payload includes a curl command ready for testing.
What it detects
XSS Payloads
SQL Injection
SSRF Payloads
SSTI Detection
Detection capabilities
What Payload Forge finds
SQL Injection
Database-specific payloads (MySQL, PostgreSQL, MSSQL, SQLite, Oracle) including time-based blind, union, and error-based.
SSRF Payloads
Cloud metadata endpoint variants, protocol wrappers (file://, dict://, gopher://), and IP obfuscation techniques.
SSTI Detection
Template engine polyglot probes for Jinja2, Twig, Freemarker, ERB, and Velocity with escalation payloads.
Step-by-step guide
How to use Payload Forge
Select vulnerability class
Choose XSS, SQLi, SSRF, SSTI, Path Traversal, or Command Injection. Sub-types appear based on your selection.
Set context and encoding
Specify where the payload lands (HTML, attribute, JS, URL) for accurate context-aware generation.
Copy and test
Each payload comes with a one-click copy and an annotated curl command ready for PoC documentation.
Keep going
Related tools
ANALYSISEXPLOIT
JWT Analyzer
Decode JWT tokens and test for algorithm confusion, weak secrets, and common exploits.
Use tool →
RECONANALYSIS
URL Analysis
Find open redirects, SSRF indicators, and injection points in any URL.
Use tool →
ANALYSIS
Security Headers
Inspect HTTP security headers and detect missing CSP, HSTS, and clickjacking protections.
Use tool →
RaSEC Platform
Run Payload Forge as part of an overnight hunt.
All 8 tools in coordinated sequence
Deterministic reproduction
Copy-paste PoC reports
No credit cardCancel anytimeFree forever tier