Alternatives and similar repositories for Combined-Wordlists

Users that are interested in Combined-Wordlists are comparing it to the libraries listed below

• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆92Updated last year
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆112Updated 5 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆214Updated 6 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆149Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆168Updated last year
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 3 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆184Updated 4 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆61Updated 2 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆104Updated 6 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆147Updated 5 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆87Updated 5 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 5 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆95Updated 4 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆130Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆85Updated 5 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆84Updated 4 years ago
• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆198Updated 3 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆198Updated 6 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆163Updated 3 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆154Updated 5 years ago
• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆113Updated 2 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 5 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 5 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 5 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆123Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 4 years ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 5 years ago