Add timing attacks, Tor-based attacks, SSJI, symbolic link attacks, and enhanced auth bypass payloads

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>

README.md

@@ -13,6 +13,7 @@ This repository contains a complete collection of testing payloads organized by
 - **[XSS (Cross-Site Scripting)](./XSS/)** - Client-side code injection
 - **[Command Injection](./Command-Injection/)** - OS command execution & symbolic link attacks
 - **[SSTI (Server-Side Template Injection)](./SSTI/)** - Template engine exploitation & RCE
+- **[SSJI (Server-Side JavaScript Injection)](./SSJI/)** - Node.js code injection & RCE
 - **[CSV Injection](./CSV-Injection/)** - Formula injection in spreadsheets
 - **[LDAP Injection](./LDAP-Injection/)** - Directory service manipulation
 - **[Log Injection](./Log-Injection/)** - Log file manipulation
@@ -33,6 +34,8 @@ This repository contains a complete collection of testing payloads organized by
 - **[SSRF](./SSRF/)** - Server-side request forgery
 - **[Deserialization](./Deserialization/)** - Insecure deserialization
 - **[File Upload](./File-Upload/)** - Malicious file upload & RCE techniques
+- **[Symbolic Link Attacks](./Symbolic-Link-Attacks/)** - Symlink exploitation & file system attacks
+- **[Timing Attacks](./Timing-Attacks/)** - Side-channel timing analysis & user enumeration
 
 **Configuration & Design:**
 - **[Security Misconfiguration](./Security-Misconfiguration/)** - Default credentials, misconfigurations
@@ -43,6 +46,9 @@ This repository contains a complete collection of testing payloads organized by
 - **[Weak Cryptography](./Weak-Cryptography/)** - Weak crypto implementations
 - **[Vulnerable Components](./Vulnerable-Components/)** - Known vulnerable libraries
 
+**Network & Anonymity:**
+- **[Tor-Based Attacks](./Tor-Based-Attacks/)** - Tor anonymity exploitation & onion service testing
+
 ## 🎯 Purpose
 
 This repository serves as a comprehensive reference for security professionals to: