gmelodie / awesome-wordlists

Related projects: ⓘ

• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,550Updated 3 weeks ago
• trickest / wordlists
  Real-world infosec wordlists, updated regularly
  ☆1,350Updated this week
• six2dez / pentest-book
  ☆1,536Updated 2 weeks ago
• ivan-sincek / penetration-testing-cheat-sheet
  Work in progress...
  ☆633Updated last month
• xajkep / wordlists
  Infosec Wordlists and more.
  ☆755Updated last year
• Tib3rius / Pentest-Cheatsheets
  ☆1,037Updated 3 years ago
• Karanxa / Bug-Bounty-Wordlists
  A repository that includes all the important wordlists used while bug hunting.
  ☆1,167Updated last year
• sushiwushi / bug-bounty-dorks
  List of Google Dorks for sites that have responsible disclosure program / bug bounty program
  ☆1,174Updated last year
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,461Updated 2 months ago
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,282Updated last month
• AlexisAhmed / BugBountyToolkit
  A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.
  ☆1,082Updated last year
• digininja / CeWL
  CeWL is a Custom Word List Generator
  ☆1,910Updated 3 weeks ago
• glitchedgitz / cook
  A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.
  ☆1,012Updated 5 months ago
• The-XSS-Rat / SecurityTesting
  ☆1,005Updated 4 months ago
• chvancooten / BugBountyScanner
  A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
  ☆854Updated 9 months ago
• mandatoryprogrammer / xsshunter-express
  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
  ☆1,519Updated 6 months ago
• arch3rPro / PentestTools
  Awesome Pentest Tools Collection
  ☆1,087Updated last month
• payloadbox / xxe-injection-payload-list
  🎯 XML External Entity (XXE) Injection Payload List
  ☆1,066Updated 2 months ago
• robotshell / magicRecon
  MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…
  ☆817Updated last month
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆3,435Updated 4 months ago
• screetsec / Sudomy
  Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…
  ☆1,964Updated 2 months ago
• payloadbox / rfi-lfi-payload-list
  🎯 RFI/LFI Payload List
  ☆527Updated 2 months ago
• netbiosX / Checklists
  Red Teaming & Pentesting checklists for various engagements
  ☆2,475Updated 3 weeks ago
• CiscoCXSecurity / enum4linux
  enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts
  ☆1,141Updated last year
• kaiiyer / awesome-vulnerable
  A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
  ☆944Updated 4 months ago
• 21y4d / nmapAutomator
  A script that you can run in the background!
  ☆2,680Updated last month
• tomnomnom / httprobe
  Take a list of domains and probe for working HTTP and HTTPS servers
  ☆2,824Updated 2 months ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,895Updated 3 years ago
• IvanGlinkin / Fast-Google-Dorks-Scan
  The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information abo…
  ☆1,411Updated 2 months ago
• d4t4s3c / OffensiveReverseShellCheatSheet
  Collection of reverse shells for red team operations.
  ☆447Updated last month