Alternatives and similar repositories for SecLists:

Users that are interested in SecLists are comparing it to the libraries listed below

• OJ / gobuster
  Directory/File, DNS and VHost busting tool written in Go
  ☆10,777Updated 3 weeks ago
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆13,253Updated 7 months ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,353Updated last year
• owasp-amass / amass
  In-depth attack surface mapping and asset discovery
  ☆12,376Updated last month
• juliocesarfort / public-pentesting-reports
  A list of public penetration test reports published by several consulting firms and academic security groups.
  ☆8,635Updated 7 months ago
• infosecn1nja / Red-Teaming-Toolkit
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆9,245Updated 4 months ago
• 1N3 / Sn1per
  Attack Surface Management Platform
  ☆8,353Updated 3 weeks ago
• byt3bl33d3r / CrackMapExec
  A swiss army knife for pentesting networks
  ☆8,554Updated last year
• projectdiscovery / subfinder
  Fast passive subdomain enumeration tool.
  ☆11,022Updated this week
• peass-ng / PEASS-ng
  PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
  ☆16,686Updated this week
• fortra / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆13,827Updated this week
• laramies / theHarvester
  E-mails, subdomains and names Harvester - OSINT
  ☆11,877Updated this week
• samratashok / nishang
  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
  ☆8,939Updated 9 months ago
• maurosoria / dirsearch
  Web path scanner
  ☆12,475Updated last week
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,702Updated 2 years ago
• PowerShellMafia / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆12,064Updated 4 years ago
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,126Updated 3 months ago
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,071Updated 5 months ago
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆7,164Updated last year
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,701Updated this week
• s0md3v / XSStrike
  Most advanced XSS scanner.
  ☆13,547Updated 5 months ago
• berzerk0 / Probable-Wordlists
  Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren…
  ☆8,791Updated last year
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,920Updated 2 months ago
• Tib3rius / AutoRecon
  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
  ☆5,280Updated 7 months ago
• EmpireProject / Empire
  Empire is a PowerShell and Python post-exploitation agent.
  ☆7,521Updated 5 years ago
• lgandx / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆5,619Updated this week
• sullo / nikto
  Nikto web server scanner
  ☆8,872Updated 3 weeks ago
• beefproject / beef
  The Browser Exploitation Framework Project
  ☆10,015Updated this week
• DominicBreuker / pspy
  Monitor linux processes without root permissions
  ☆5,075Updated 2 years ago
• swisskyrepo / PayloadsAllTheThings
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆62,782Updated this week