FuzzDB PHP Magic Hashes
PHP magic-hash strings that hash to 0e... patterns, exploiting loose (==) type-juggling comparisons to bypass authentication and hash checks.
- Size
- 744 B
- Category
- Fuzzing
- Source
- fuzzdb-project/fuzzdb
- License
- GPLv2
- Recommended tools
- burpffufwfuzz
Preview
First 15 entries. Download or copy the full list (744 B) using the buttons above.
00e00099 00e05651056780370631793326323796 00e1839085851394356611454660337505469745 00e2521569708250889666329543741175098562 00e38549671092424173928143648452 00e4706040169225543861400227305532507173 0e015339760548602306096794382326 0e01697014920826425936632356870426876167 0e074025 0e07766915004133176347055865026311692244 0e251331818775808475952406672980 0e266546927425668450445617970135 0e316321729023182394301371028665 0e34042599806027333661050958199580964722 0e462097431906509019562988736854
PHP magic-hash strings that hash to 0e... patterns, exploiting loose (==) type-juggling comparisons to bypass authentication and hash checks.
This list is geared toward input fuzzing and vulnerability discovery. It contains roughly 744 B and pairs well with tools such as burp, ffuf, wfuzz. Pick the smallest list that fits your engagement: shorter lists are faster and quieter for online attacks, while larger lists give broader coverage for offline work where speed is less of a constraint.
You can copy the sample preview straight from this page, copy the entire list to
your clipboard, or download the raw .txt file. The full list is served directly
from its upstream source on GitHub.
Sourced from fuzzdb-project/fuzzdb and distributed under GPLv2. Only use wordlists against systems you are explicitly authorized to test.