Alternatives and similar repositories for SecLists:

Users that are interested in SecLists are comparing it to the libraries listed below

• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 9 years ago
• zynga / hiccup
  [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …
  ☆42Updated 6 years ago
• GrrrDog / ACEDcup
  Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
  ☆38Updated 8 years ago
• Charliedean / PsexecSpray
  Spray SMB with hashes, Then psexec
  ☆32Updated 5 years ago
• v-egoshin / WindowsUploadToolkit
  PHDAYS |||
  ☆17Updated 11 years ago
• hatRiot / rpcshell
  Axis2 RPC Shell
  ☆14Updated 9 years ago
• savon-noir / nmap-webgui
  Basic gui to run and display nmap scan results. Just a POC so far.
  ☆31Updated 11 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• vulnersCom / detect-rules
  Vulners signature-base software version detection rules
  ☆37Updated 3 years ago
• GDSSecurity / burpee
  Python object interface to requests/responses recorded by Burp Suite
  ☆36Updated 5 years ago
• silentsignal / burp-collab-gw
  Simple socket-based gateway to the Burp Collaborator
  ☆33Updated 8 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 11 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 6 years ago
• tomekr / BurpFlashCSRFBuilder
  Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients
  ☆14Updated 11 years ago
• OpenSecurityResearch / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆16Updated 11 years ago
• irsdl / updated-SWFIntruder
  Updated version of SWFIntruder
  ☆26Updated 8 years ago
• AonCyberLabs / BadSamba
  This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …
  ☆22Updated 5 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• milo2012 / nmap2nessus
  ☆46Updated 7 years ago
• infobyte / isr-sqlget
  ISR-sqlget It's a blind SQL injection tool developed in Perl.
  ☆14Updated 11 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• infobyte / cscan
  Faraday Continuous Scanning
  ☆33Updated 8 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆54Updated 7 years ago
• toddsiegel / spscan
  SharePoint scanner and fingerprinter based on WPScan
  ☆25Updated 11 years ago
• aur3lius-dev / SpyDir
  BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration
  ☆22Updated 6 years ago
• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 8 years ago
• webstersprodigy / webstersprodigy
  misc pentest tools.
  ☆26Updated 10 years ago
• cyberpunkych / attacking_mongodb
  Files from Zeronights presentation.
  ☆28Updated 12 years ago
• ParsingTeam / ppsx-file-generator
  CVE-2017-8570 Exploit
  ☆21Updated 7 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆51Updated 4 years ago