bl4de / dictionaries
Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
☆238Updated 10 months ago
Alternatives and similar repositories for dictionaries:
Users that are interested in dictionaries are comparing it to the libraries listed below
- HTTP file upload scanner for Burp Proxy☆490Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆273Updated 4 years ago
- Automated blind-xss search for Burp Suite☆283Updated 5 years ago
- A mini webserver with FTP support for XXE payloads☆329Updated last year
- Another way to bypass WAF Cheat Sheet (draft)☆421Updated 6 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆295Updated 5 years ago
- ☆276Updated 2 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆313Updated last year
- List DTDs and generate XXE payloads using those local DTDs.☆621Updated last year
- A lists of words based on common web directory and file names lists of words based on common web directory and file names. These wordlist…☆231Updated 5 years ago
- Python tool to find potential SSRF parameters☆315Updated last month
- Common Web Managers Fuzz Wordlists☆174Updated 3 weeks ago
- Burp Extension for a passive scanning JS files for endpoint links.☆771Updated last year
- XXE Out of Band Server.☆170Updated last year
- Payloads for CRLF Injection☆224Updated 5 months ago
- HTTP file upload scanner for Burp Proxy☆403Updated last year
- Command line tool for testing CRLF injection on a list of domains.☆160Updated 11 months ago
- Pentest/BugBounty progress control with scanning modules☆281Updated 4 years ago
- ActiveScan++ Burp Suite Plugin☆219Updated 2 months ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆597Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆214Updated 5 months ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆293Updated 5 years ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆462Updated last year
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆721Updated 5 years ago
- Take a list of domains/subdomains and probe for working http/https server.☆186Updated 4 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆180Updated 4 years ago
- Burp Suite extension to discover assets from HTTP response.☆224Updated 2 months ago
- Automated HTTP Request Repeating With Burp Suite☆870Updated 3 years ago
- Utils☆267Updated 9 years ago