n0kovo / awesome-wordlists
A curated list wordlists for bruteforcing and fuzzing
☆78Updated last year
Related projects ⓘ
Alternatives and complementary repositories for awesome-wordlists
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- ☆18Updated last year
- Web Hacking and Red Teaming MindMap☆68Updated last year
- Automate Scoping, OSINT and Recon assessments.☆92Updated 2 months ago
- Red Teaming tools and techniques☆47Updated last year
- Recon scripts for Red Team and Web blackbox auditing☆29Updated this week
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆30Updated last year
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆77Updated 11 months ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated 2 years ago
- ☆26Updated last year
- PassMute - A multi featured Password Transmutation/Mutator Tool☆51Updated last year
- Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2…☆83Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merge…☆22Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon☆43Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 11 months ago
- [BASH] Bounty Meter is a command-line utility tool designed for bug bounty hunters to define their bounty target for a year, maintain and…☆32Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆27Updated 11 months ago
- This is an AD pentest tools collection☆53Updated 4 months ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆89Updated 3 months ago
- ☆64Updated last year
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆56Updated last year
- Tools used for Pentesting☆22Updated last year
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆37Updated 7 months ago
- Automated Subdomain Enumeration and Scanning Tool☆110Updated last year
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆89Updated 7 months ago