Alternatives and similar repositories for WordLists

Users that are interested in WordLists are comparing it to the libraries listed below

• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆127Updated 4 years ago
• theMiddleBlue / DNSenum
  Bash script for DNS Enumeration.
  ☆128Updated 2 years ago
• gwen001 / vhost-brute
  A PHP tool to brute force vhost configured on a server.
  ☆89Updated 3 years ago
• secdec / xssmap
  Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
  ☆150Updated 3 years ago
• D4Vinci / CWFF
  Create your Custom Wordlist For Fuzzing
  ☆202Updated last year
• aress31 / xmlrpc-bruteforcer
  Multi-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
  ☆140Updated last year
• 21y4d / blindSQLi
  A python based blind SQL injection exploitation script
  ☆142Updated 6 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆199Updated 6 years ago
• danielmiessler / Source2URL
  Parse source code directories and output list of URLs that are then sent through a proxy.
  ☆157Updated 3 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆104Updated 6 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated 2 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆86Updated 5 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆131Updated 2 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆185Updated 5 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆149Updated 2 years ago
• thegsoinfosec / BurpSuite_payloads
  Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
  ☆86Updated 5 years ago
• relarizky / wpxploit
  Simple Python Script For Performing XMLRPC Dictionary Attack
  ☆134Updated 5 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆93Updated last year
• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆99Updated last year
• ghostlulzhacks / waybackMachine
  ☆61Updated 4 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆210Updated last year
• skynet0x01 / tugarecon
  TugaRecon is an advanced subdomain reconnaissance and intelligence framework built for security researchers, penetration testers and OSIN…
  ☆184Updated last week
• xxgrunge / sqlninja
  SQL Injection Tool
  ☆70Updated 11 years ago
• inc0d3 / moodlescan
  Tool for scan vulnerabilities in Moodle platforms
  ☆97Updated 3 years ago
• ethicalhackingplayground / Bug-Bounty-Tools
  The tools I have programmed to help me with bugbounty's
  ☆118Updated 6 years ago
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆124Updated last year
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆165Updated last year
• m4ll0k / Awesome-Bugbounty-Writeups
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆44Updated 5 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 5 years ago