A repository of wordlists for enumeration. Will be added to by my tools when they find interesting new entries
☆23Jan 21, 2021Updated 5 years ago
Alternatives and similar repositories for Wordlists
Users that are interested in Wordlists are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Describe how to use ffuf different options with examples☆13Jun 13, 2022Updated 3 years ago
- Lots of POC Codes & Preparation materials, scripts, discovery processes in there.☆15Feb 8, 2024Updated 2 years ago
- Bug Hunting Handbook☆11Aug 11, 2022Updated 3 years ago
- Vulnerable ASP based Web Application☆18Jan 25, 2019Updated 7 years ago
- TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection☆41Oct 8, 2022Updated 3 years ago
- Yet another dirbuster tool☆13Oct 16, 2023Updated 2 years ago
- Bug Bounty Tools☆34Jul 2, 2020Updated 5 years ago
- <img src=x onerroralert(1);>☆11Jul 12, 2014Updated 11 years ago
- ORDER - A small Python web-app to practice blind SQLi in order by☆21Mar 21, 2021Updated 5 years ago
- Script for Bug Bounty☆29Sep 17, 2021Updated 4 years ago
- ☆20Aug 15, 2020Updated 5 years ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 5 years ago
- Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510☆18Aug 27, 2019Updated 6 years ago
- ☆42Dec 26, 2022Updated 3 years ago
- Cloudflare Bypass Script☆23Dec 12, 2019Updated 6 years ago
- Bypass http 403 🐏☆16Feb 26, 2022Updated 4 years ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries…☆24Feb 22, 2022Updated 4 years ago
- Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.☆14Dec 30, 2023Updated 2 years ago
- Advanced test for proxy & waf☆14Feb 10, 2026Updated last month
- XSS payloads to bypass various XSS filters☆13May 1, 2019Updated 6 years ago
- Repo for OSWE related video content for @SecAura Youtube Channel☆37Feb 21, 2022Updated 4 years ago
- Recon Custom WordList Ganerator☆58Jul 2, 2020Updated 5 years ago
- Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.☆37Jul 7, 2020Updated 5 years ago
- My OSWE Pre-preperation (i.e. before acutally buying the course) phase plan and notes!☆85Jul 22, 2025Updated 8 months ago
- Facebook Write-ups, PoC, and exploitation codes:☆30Jan 20, 2020Updated 6 years ago
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Dec 6, 2022Updated 3 years ago
- Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation☆31Mar 21, 2021Updated 5 years ago
- nistrich allows you to discover CVEs and their severities belong to IP addresses☆13Dec 28, 2022Updated 3 years ago
- ☆19Apr 29, 2019Updated 6 years ago
- ☆39Oct 2, 2021Updated 4 years ago
- Vulnerable webapp testbed☆24May 11, 2016Updated 9 years ago
- ☆12Sep 23, 2023Updated 2 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆26May 26, 2020Updated 5 years ago
- Credentials Checking Framework☆53Feb 8, 2023Updated 3 years ago
- Advanced Recon Tool☆26Aug 24, 2020Updated 5 years ago
- OSWE-cheat sheet module by module with updated syllabus☆12May 25, 2021Updated 4 years ago
- A Burp Suite extension to parse Content-Transfer-Encoding: quoted-printable emails received in Burpcollaborator's SMTP☆30Aug 8, 2020Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago