0xdevalias/wordlists external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xdevalias/wordlists

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xdevalias/wordlists)

Close

0xdevalias / wordlistsView on GitHubMore

• External links
• Readme badge

A place to store my own wordlists, and link to others that are useful

☆108Nov 15, 2023Updated 2 years ago

Alternatives and similar repositories for wordlists

Users that are interested in wordlists are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• xxux11 / http-methods-discloser

  View on GitHub
  ☆44Apr 30, 2021Updated 4 years ago
• C1h2e1 / Recon

  View on GitHub
  Easy Fast recon script
  ☆30Sep 15, 2019Updated 6 years ago
• securityidiots / CollabOzark

  View on GitHub
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆136Sep 25, 2019Updated 6 years ago
• internetwache / CT_subdomains

  View on GitHub
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆346Oct 13, 2021Updated 4 years ago
• Cyb3rMehul / venom

  View on GitHub
  Auto Recon Bash Script
  ☆31Dec 31, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• ethicalhackingplayground / Gxss

  View on GitHub
  Tool for checking reflecting Parameters in a URL.
  ☆10Aug 31, 2020Updated 5 years ago
• 0xthirteen / PowerView3-Aggressor

  View on GitHub
  Cobalt Strike Aggressor script menu for Powerview/SharpView
  ☆28May 8, 2019Updated 6 years ago
• hakluke / hakfindinternaldomains

  View on GitHub
  Feed it a list of subdomains, it will resolve them and tell you which ones are internal
  ☆93Nov 21, 2021Updated 4 years ago
• random-robbie / s3-tko

  View on GitHub
  AWS S3 Bucket Finder.
  ☆14Oct 28, 2025Updated 5 months ago
• k0fin / eternalrelayx

  View on GitHub
  eternalrelayx
  ☆36Jul 10, 2019Updated 6 years ago
• PortSwigger / burp-smart-buster

  View on GitHub
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Jan 22, 2018Updated 8 years ago
• BuildHackSecure / gitscraper

  View on GitHub
  A tool which scrapes public github repositories for common naming conventions in variables, folders and files
  ☆296Jun 3, 2024Updated last year
• arg3t / massurl

  View on GitHub
  A simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau
  ☆12Jun 28, 2021Updated 4 years ago
• melbadry9 / SSLEnum

  View on GitHub
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Nov 10, 2025Updated 4 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• sorokinpf / ApiWordlistGenerator

  View on GitHub
  Generate wordlists for fuzzing API method names
  ☆55Oct 16, 2020Updated 5 years ago
• Cillian-Collins / dirscraper

  View on GitHub
  OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.
  ☆227Feb 24, 2019Updated 7 years ago
• smiegles / extract-relative-url-heapsnapshot

  View on GitHub
  Extract relative urls from a heap snapshot
  ☆87May 30, 2021Updated 4 years ago
• xer0times / SQLi-Query-Tampering

  View on GitHub
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆156Aug 21, 2020Updated 5 years ago
• MindPatch / lorsrf

  View on GitHub
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆295Sep 22, 2024Updated last year
• TheTwitchy / vulnd_xxe

  View on GitHub
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Mar 29, 2018Updated 8 years ago
• ZephrFish / Wordlists

  View on GitHub
  Various Payload wordlists
  ☆240Apr 26, 2025Updated 11 months ago
• redhuntlabs / BurpSuite-Asset_Discover

  View on GitHub
  Burp Suite extension to discover assets from HTTP response.
  ☆233Jan 22, 2025Updated last year
• Impact-I / x8-Burp

  View on GitHub
  Hidden parameters discovery suite
  ☆224Nov 14, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• honoki / burp-copy-regex-matches

  View on GitHub
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆34Feb 12, 2022Updated 4 years ago
• proabiral / inception

  View on GitHub
  A highly configurable Framework for easy automated web scanning
  ☆382Jul 13, 2020Updated 5 years ago
• AlfredBerg / dnsline

  View on GitHub
  Tool for making it easy to collect dns results from the CLI
  ☆40Aug 14, 2024Updated last year
• mystech7 / Burp-Hunter

  View on GitHub
  XSS Hunter Burp Plugin
  ☆151Aug 31, 2018Updated 7 years ago
• lc / brute53

  View on GitHub
  A tool to bruteforce nameservers when working with subdomain delegations to AWS.
  ☆58Aug 22, 2019Updated 6 years ago
• TyrantSec / Fuzzing

  View on GitHub
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Jun 6, 2019Updated 6 years ago
• harleo / asnip

  View on GitHub
  ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
  ☆220Apr 10, 2022Updated 3 years ago
• smaranchand / bucky

  View on GitHub
  Bucky (An automatic S3 bucket discovery tool)
  ☆198Jan 6, 2022Updated 4 years ago
• lc / secretz

  View on GitHub
  secretz, minimizing the large attack surface of Travis CI
  ☆325May 30, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• pwntester / DupeKeyInjector

  View on GitHub
  DupeKeyInjector
  ☆134Apr 16, 2022Updated 3 years ago
• RUB-NDS / SAML-XXE-Test

  View on GitHub
  Simple XXE test suite generated specifically for SAML interfaces
  ☆23May 18, 2018Updated 7 years ago
• edduu / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆94Apr 16, 2020Updated 5 years ago
• sayaanalam / CORS-EXPLOIT

  View on GitHub
  ☆38Aug 12, 2020Updated 5 years ago
• filedescriptor / Unicode-Mapping-on-Domain-names

  View on GitHub
  ☆133Dec 15, 2020Updated 5 years ago
• dwisiswant0 / unew

  View on GitHub
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆128Mar 2, 2022Updated 4 years ago
• appsecco / VyAPI

  View on GitHub
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Feb 21, 2020Updated 6 years ago