ONsec-Lab / SecListsLinks
SecLists is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
☆11Updated 11 years ago
Alternatives and similar repositories for SecLists
Users that are interested in SecLists are comparing it to the libraries listed below
Sorting:
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 9 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆31Updated 9 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 11 years ago
- Updated version of SWFIntruder☆27Updated 9 years ago
- REST/JSON interface to Burp Suite☆33Updated 5 years ago
- Python object interface to requests/responses recorded by Burp Suite☆36Updated 5 years ago
- Burp extension that checks for interesting and security headers☆44Updated 5 years ago
- [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …☆42Updated 6 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 7 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 8 years ago
- Burp plugin which supports in finding privilege escalation vulnerabilities☆41Updated 3 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆16Updated 12 years ago
- Burp extension to quickly and easily develop Python complex exploits based on Burp proxy requests.☆32Updated 10 years ago
- A modular distributed penetration testing tool.☆41Updated 8 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- Vulners signature-base software version detection rules☆38Updated 4 years ago
- ☆23Updated 10 years ago
- Deliberately vulnerable web application☆22Updated 8 years ago
- Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps a…☆74Updated 7 years ago
- A SHODAN/Censys + Paramiko scanner to check for backdoored Internet-facing Juniper ScreenOS devices☆65Updated 9 years ago
- BurpSuite Pro Python Extension☆18Updated 12 years ago
- Wraps sudo; transparently steals user's credentials. For those annoying times when you get a shell/file write on a sudoers account and ne…☆35Updated last year
- Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients☆14Updated 12 years ago
- ISR-sqlget It's a blind SQL injection tool developed in Perl.☆14Updated 12 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 13 years ago
- ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461☆48Updated 10 years ago
- Operational toolset utilizing git's submodule feature☆57Updated 12 years ago
- ☆46Updated 8 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Updated 8 years ago