decal / werdlists
Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
☆357Updated 8 months ago
Alternatives and similar repositories for werdlists:
Users that are interested in werdlists are comparing it to the libraries listed below
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆361Updated last year
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆548Updated 2 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆214Updated 6 months ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆272Updated 4 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆315Updated 3 years ago
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆332Updated 4 years ago
- A highly configurable Framework for easy automated web scanning☆373Updated 4 years ago
- Note: Going through a full re-write of the tooling so the current versions in the repo do not work!☆405Updated 4 years ago
- Simple shell script for automated domain recognition with some tools☆300Updated 4 years ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆297Updated 5 years ago
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.☆228Updated 6 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆531Updated 6 years ago
- Trying to make automated recon for bug bounties☆253Updated 4 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆453Updated 5 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆306Updated 6 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- An extremely fast and flexible web fuzzer☆218Updated 2 years ago
- My Recon Automation☆194Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆441Updated 4 years ago
- DNS Rebinding Exploitation Framework☆488Updated 4 years ago
- Payloads for CRLF Injection☆222Updated 6 months ago
- Bugbounty scope tool☆328Updated 2 months ago
- JShell - Get a JavaScript shell with XSS.☆523Updated 6 years ago
- Python 3.5+ DNS asynchronous brute force utility☆653Updated last year
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆365Updated 2 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Updated 4 years ago
- Repository for hosting my research papers☆508Updated last year
- Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions☆221Updated 3 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆258Updated 3 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆559Updated 2 years ago