SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
☆15Apr 5, 2019Updated 7 years ago
Alternatives and similar repositories for SecLists
Users that are interested in SecLists are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Metasploit Framework☆11Apr 18, 2019Updated 6 years ago
- Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren…☆16Feb 27, 2018Updated 8 years ago
- E-mails, subdomains and names Harvester - OSINT☆13Feb 26, 2018Updated 8 years ago
- A swiss army knife for pentesting Windows/Active Directory environments☆14May 29, 2018Updated 7 years ago
- Scrape google search results☆94Aug 24, 2018Updated 7 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆19Apr 29, 2015Updated 10 years ago
- MS17-010☆12Oct 25, 2017Updated 8 years ago
- Catch IMAP/POP passwords and see incoming and outgoing messages☆16Sep 15, 2013Updated 12 years ago
- Sniffs an interface/pcap file and concatenates fragmented packet loads☆22Feb 26, 2015Updated 11 years ago
- Search google for shellshock vulnerable sites☆27Oct 10, 2014Updated 11 years ago
- A web front-end for password cracking and analytics☆16Jan 6, 2019Updated 7 years ago
- USBdriveby exploits the trust of USB devices by emulating an HID keyboard and mouse, installing a firewall-evading backdoor, and reroutin…☆10Dec 23, 2014Updated 11 years ago
- .Net library to create Maltego transformations.☆17Feb 11, 2025Updated last year
- Obtain handshakes from networks out of your range!☆28Sep 20, 2021Updated 4 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Standalone, local-runnable binaries of popular linux distributions☆10Dec 15, 2021Updated 4 years ago
- A Python Script that prepairs and installs a Raspberry Pi compatiable distro to an SD Card☆16Aug 5, 2012Updated 13 years ago
- Phishing Campaign Toolkit☆13Nov 9, 2021Updated 4 years ago
- Rust-based password mutator for brute force attacks☆13Mar 21, 2025Updated last year
- Generating digits that are secretly *other* digits doing handstands☆19Aug 27, 2019Updated 6 years ago
- Run server code on a remote host without installing anything on the server. (git import of danderson's hg repo)☆31Jun 25, 2012Updated 13 years ago
- OpSec in OSINT - An evolving guide on how to stay safe and private during open source intelligence investigations☆21Jul 4, 2017Updated 8 years ago
- GPT AI Assistant documentation☆19Apr 18, 2025Updated 11 months ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆13Dec 29, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Oct 24, 2017Updated 8 years ago
- Hashes of infamous malware☆26Jul 10, 2023Updated 2 years ago
- A curated list of websites which do not load any obtrusive 3rd party content☆11Dec 7, 2021Updated 4 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆12May 21, 2024Updated last year
- Fitness OSINT Resources☆16Jul 21, 2023Updated 2 years ago
- A Pictorial Book of Tor Hidden Services.☆24Dec 1, 2017Updated 8 years ago
- Advance Google Dorker and Vulnerability Scanner☆50Oct 29, 2018Updated 7 years ago
- 🎮 Magisk module all-in-one tweak for gaming experience.☆10Feb 8, 2022Updated 4 years ago
- backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script shoul…☆16Aug 10, 2016Updated 9 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Wi-Fi based covert channel that hides information in hand crafted acknowledgement frames imitating additional channel effects that can be…☆26Apr 1, 2018Updated 8 years ago
- ☆69Aug 19, 2014Updated 11 years ago
- Show your Instagram profile on your website. 🌈☆27Jan 13, 2022Updated 4 years ago
- Public API client for GETTR, a "non-bias [sic] social network," designed for data archival and analysis.☆13Jun 21, 2022Updated 3 years ago
- A catalog of cursors and icons from Windows 98, in original and modern formats☆17Jun 25, 2024Updated last year
- 5025 configs openbullet/silverbullet☆14Mar 5, 2023Updated 3 years ago
- Messing Apple devices on the network with CVE-2018-4407 (heap overflow in bad packet handling)☆25Dec 4, 2018Updated 7 years ago