jhaddix / SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
☆140Updated 6 years ago
Alternatives and similar repositories for SecLists:
Users that are interested in SecLists are comparing it to the libraries listed below
- ☆423Updated 2 years ago
- ☆360Updated 3 years ago
- ☆178Updated 7 months ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆108Updated 7 years ago
- ☆80Updated 5 years ago
- ☆549Updated last year
- Yet another subdomain finder☆202Updated 5 years ago
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- ☆209Updated 3 years ago
- ☆370Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆440Updated 4 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆364Updated 2 years ago
- Random utilities from my security projects that might be useful to others☆179Updated last month
- A script that can resolve an input file of domains and scan them with masscan☆157Updated 4 years ago
- A collection of templates for bug bounty reporting☆392Updated 3 years ago
- Poor (rich?) man's bug bounty pipeline https://dubell.io☆274Updated last year
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆39Updated 6 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆713Updated 2 years ago
- Simple shell script for automated domain recognition with some tools☆299Updated 4 years ago
- An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.☆210Updated 4 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆208Updated 4 years ago
- RepoToStoreBugBountyInfo☆296Updated 4 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆525Updated 6 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆215Updated 5 years ago
- Some Tutorials and Things to Do while Hunting That Vulnerability.☆72Updated 4 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆175Updated last year
- My personal bug bounty toolkit.☆164Updated 8 months ago
- Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.☆30Updated 4 years ago
- Simple recon using multiple tools!☆163Updated 3 years ago
- A XSS mind map ;)☆86Updated 8 years ago
