hisxo / SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
☆8Updated 5 years ago
Alternatives and similar repositories for SecLists:
Users that are interested in SecLists are comparing it to the libraries listed below
- Host Header Injection Scanner☆44Updated 4 years ago
- An Extended, Modulair, Host Discovery Framework☆43Updated 6 years ago
- Passive subdomain enumeration tool with http-probe.☆33Updated 3 years ago
- SpiderFoot automates OSINT collection so that you can focus on analysis.☆11Updated 2 years ago
- An organized collection of default passwords for various devices and services.☆38Updated 2 years ago
- Do some quick reconnaissance on a domain-based web-application☆13Updated 3 years ago
- Automated Google dorking with custom search engines☆27Updated 4 years ago
- Personal Collection of Awesome Google Dorks☆30Updated 5 years ago
- dork scanner with Sqli and Lfi testing☆29Updated 6 years ago
- Create wordlists from source codes files/directories for enumeration☆30Updated last year
- Spaghetti - Web Application Security Scanner☆19Updated 7 years ago
- Squatm3gator is a complete web solution based on the python tool squatm3, designed to enumerate available domains generated modifying the…☆31Updated 3 years ago
- A curated collection of some cool Penetration scripts.☆13Updated 4 years ago
- A tool that scans a list of given domains, and returns the status codes for each domain on both port 80 & 443☆18Updated 4 years ago
- My Dirty Scriptss ..!!!!! Pentest , OSINT , Python ,, Trainings☆53Updated 6 years ago
- A continuously curated list of my favorite links and resources relating to Open Source Intelligence gathering.☆19Updated 6 years ago
- A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.☆28Updated 9 years ago
- SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …☆18Updated 5 years ago
- A simple reconnaissance framework for bug bounty hunting☆35Updated 4 years ago
- A curated list of amazingly awesome OSINT☆19Updated 5 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.☆33Updated 3 years ago
- Reconnaissance tool of Penetration test & Bug Bounty☆25Updated 6 years ago
- Get URLs from the Wayback Machine. Able to handle large outputs.☆22Updated last year
- This Tool is for web penetration Testing.☆19Updated 4 years ago
- A tool to fetch and verify the existence of endpoints from the Wayback Machine API.☆52Updated 4 years ago
- E-mails, subdomains and names Harvester - OSINT☆10Updated 5 years ago
- Web application recon for bug bounty☆22Updated 5 years ago
- ☆14Updated 3 years ago
- BHHIT is a automated Host-Header-Injection attack detector.☆9Updated 4 years ago