ONsec-Lab / SecListsLinks
SecLists is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
☆11Updated 11 years ago
Alternatives and similar repositories for SecLists
Users that are interested in SecLists are comparing it to the libraries listed below
Sorting:
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 9 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- A modular distributed penetration testing tool.☆41Updated 8 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …☆42Updated 6 years ago
- Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients☆14Updated 12 years ago
- Updated version of SWFIntruder☆26Updated 8 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆16Updated 11 years ago
- Axis2 RPC Shell☆15Updated 9 years ago
- ☆23Updated 9 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- Vulners signature-base software version detection rules☆37Updated 3 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 7 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- Python object interface to requests/responses recorded by Burp Suite☆37Updated 5 years ago
- Burp plugin which supports in finding privilege escalation vulnerabilities☆40Updated 3 years ago
- Hackerone disclosed report URL Aggregator☆30Updated 6 years ago
- Wraps sudo; transparently steals user's credentials. For those annoying times when you get a shell/file write on a sudoers account and ne…☆35Updated 8 months ago
- Tools developed to test the Redirect to SMB issue☆84Updated 10 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- Burp extension that checks for interesting and security headers☆44Updated 4 years ago
- Demo Application and Exploit☆35Updated 8 years ago
- ☆46Updated 7 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- PHDAYS |||☆17Updated 12 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Burp extension to quickly and easily develop Python complex exploits based on Burp proxy requests.☆33Updated 9 years ago