Alternatives and similar repositories for Combined-Wordlists

Users that are interested in Combined-Wordlists are comparing it to the libraries listed below

• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆133Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆167Updated last year
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆61Updated 2 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆91Updated last year
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆97Updated 4 years ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆112Updated 5 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆149Updated 2 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆214Updated 6 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 4 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆89Updated 5 years ago
• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆197Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆45Updated 4 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆85Updated 5 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 5 years ago
• MrMax4o4 / Hunting-Tips
  ☆11Updated 5 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆132Updated last year
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆147Updated 5 years ago
• sorokinpf / ApiWordlistGenerator
  Generate wordlists for fuzzing API method names
  ☆54Updated 5 years ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 5 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 4 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆106Updated 6 years ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 4 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆183Updated 4 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 5 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆198Updated 6 years ago
• PatrikFehrenbach / amass-tools
  ☆108Updated 5 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆86Updated 2 years ago