Personal compilation of wordlists & dictionaries for everything. Users, passwords, directories, files, vulnerabilities, fuzzing, injections, wordlists of tools, etc.
☆280May 18, 2020Updated 5 years ago
Alternatives and similar repositories for WordList-Compendium
Users that are interested in WordList-Compendium are comparing it to the libraries listed below
Sorting:
- This repository is a collection of Awesome XSS Payloads in 1 txt file☆11Dec 23, 2019Updated 6 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆107Aug 4, 2020Updated 5 years ago
- this contain the burp pack☆208Jan 25, 2017Updated 9 years ago
- Create wordlists from source codes files/directories for enumeration☆30Jul 18, 2023Updated 2 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆93Jun 10, 2024Updated last year
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Jul 10, 2020Updated 5 years ago
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆238May 4, 2022Updated 3 years ago
- Various Payload wordlists☆240Apr 26, 2025Updated 10 months ago
- Extract subdomains from rapiddns.io☆22Nov 24, 2022Updated 3 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Dec 29, 2019Updated 6 years ago
- Multiprocessing(Parallel)Subdomain Detect Script☆329Jan 28, 2024Updated 2 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆87May 6, 2023Updated 2 years ago
- A tool which scrapes public github repositories for common naming conventions in variables, folders and files☆296Jun 3, 2024Updated last year
- Wordlists for intelligent directory brute-forcing☆33Sep 28, 2021Updated 4 years ago
- Build interactive map of cameras from Shodan☆23Jan 17, 2020Updated 6 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆174Aug 21, 2023Updated 2 years ago
- Recon Custom WordList Ganerator☆58Jul 2, 2020Updated 5 years ago
- HTTP parameter discovery suite.☆93Apr 16, 2020Updated 5 years ago
- Capture The Flag | HackTheBox | OSCP | Bug Bounty Hunting | Jobs☆135Apr 10, 2020Updated 5 years ago
- Check List☆80Jul 16, 2022Updated 3 years ago
- Take a list of domains/subdomains and probe for working http/https server.☆192Sep 8, 2020Updated 5 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆128Mar 2, 2022Updated 4 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆107Feb 11, 2019Updated 7 years ago
- A combined wordlists for files and directory discovery☆127May 3, 2021Updated 4 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆544Aug 23, 2018Updated 7 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆1,052Jan 3, 2025Updated last year
- Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…☆13Oct 23, 2021Updated 4 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆845May 16, 2024Updated last year
- Service-Now Article Bruteforcer☆16Jun 5, 2020Updated 5 years ago
- Quick SQLMap Tamper Suggester☆1,399Jul 18, 2022Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆174Nov 11, 2020Updated 5 years ago
- Host Header Injection Checker☆84Mar 2, 2022Updated 4 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆972Dec 8, 2021Updated 4 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215May 13, 2019Updated 6 years ago
- ☆32Apr 6, 2021Updated 4 years ago
- ☆19Nov 18, 2020Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Apr 17, 2020Updated 5 years ago
- The Swiss Army knife for automated Web Application Testing☆2,324May 8, 2024Updated last year