SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
☆15Apr 5, 2019Updated 7 years ago
Alternatives and similar repositories for SecLists
Users that are interested in SecLists are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Metasploit Framework☆11Apr 18, 2019Updated 7 years ago
- Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren…☆16Feb 27, 2018Updated 8 years ago
- E-mails, subdomains and names Harvester - OSINT☆13Feb 26, 2018Updated 8 years ago
- A swiss army knife for pentesting Windows/Active Directory environments☆14May 29, 2018Updated 8 years ago
- Scrape google search results☆94Aug 24, 2018Updated 7 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Search bing with python☆12Sep 25, 2014Updated 11 years ago
- Concurrently test bing results for shellshock vulnerability☆42Sep 27, 2014Updated 11 years ago
- Opens 1K+ IPs or Shodan search results and attempts to login☆148Jan 30, 2021Updated 5 years ago
- ☆19Apr 29, 2015Updated 11 years ago
- Find wifi channel with least interference☆54Jul 21, 2019Updated 6 years ago
- Does some google dorks against a domain☆166Jan 20, 2020Updated 6 years ago
- Template for asynchronously controlling meterpreter sessions☆13Jun 19, 2018Updated 8 years ago
- MS17-010☆12Oct 25, 2017Updated 8 years ago
- Catch IMAP/POP passwords and see incoming and outgoing messages☆16Sep 15, 2013Updated 12 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Sniffs an interface/pcap file and concatenates fragmented packet loads☆22Feb 26, 2015Updated 11 years ago
- Search google for shellshock vulnerable sites☆27Oct 10, 2014Updated 11 years ago
- A web front-end for password cracking and analytics☆17Jan 6, 2019Updated 7 years ago
- USBdriveby exploits the trust of USB devices by emulating an HID keyboard and mouse, installing a firewall-evading backdoor, and reroutin…☆10Dec 23, 2014Updated 11 years ago
- New Honeypot Version: 1.2! This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honey…☆12Aug 3, 2018Updated 7 years ago
- .Net library to create Maltego transformations.☆17Feb 11, 2025Updated last year
- Obtain handshakes from networks out of your range!☆28Sep 20, 2021Updated 4 years ago
- Standalone, local-runnable binaries of popular linux distributions☆10Dec 15, 2021Updated 4 years ago
- Get images of your favourite stickers☆14Mar 8, 2025Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Find data about you or an individual from various online public records☆31May 26, 2017Updated 9 years ago
- A collection of hacks and one-off scripts☆10Apr 6, 2020Updated 6 years ago
- Run server code on a remote host without installing anything on the server. (git import of danderson's hg repo)☆31Jun 25, 2012Updated 14 years ago
- OpSec in OSINT - An evolving guide on how to stay safe and private during open source intelligence investigations☆22Jul 4, 2017Updated 9 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Oct 24, 2017Updated 8 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆13Dec 29, 2020Updated 5 years ago
- A guide explaining how to use Gophish☆42Sep 6, 2022Updated 3 years ago
- List all tracks of an artist ranked by poularity at http://localhost:3000/tracks/{artistName}☆10Sep 24, 2015Updated 10 years ago
- Hashes of infamous malware☆26Jul 10, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆16Sep 1, 2017Updated 8 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆13May 21, 2024Updated 2 years ago
- A Pictorial Book of Tor Hidden Services.☆25Dec 1, 2017Updated 8 years ago
- Interview questions to screen offensive (red team/pentest) candidates☆12Apr 7, 2017Updated 9 years ago
- Advance Google Dorker and Vulnerability Scanner☆51Oct 29, 2018Updated 7 years ago
- Fresh HQ Combo List For Cracking☆10Sep 13, 2021Updated 4 years ago
- backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script shoul…☆16Aug 10, 2016Updated 9 years ago