nahamsec / SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
☆51Updated 9 years ago
Alternatives and similar repositories for SecLists:
Users that are interested in SecLists are comparing it to the libraries listed below
- The project contains multiple shell scripts for automating the tasks during recon.☆176Updated last year
- The tools I have programmed to help me with bugbounty's☆114Updated 5 years ago
- Yet another subdomain finder☆202Updated 5 years ago
- A script that can resolve an input file of domains and scan them with masscan☆157Updated 4 years ago
- Random utilities from my security projects that might be useful to others☆178Updated 3 weeks ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆39Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆108Updated 7 years ago
- A python script that finds endpoints in JavaScript files☆42Updated 5 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆168Updated 4 years ago
- ☆191Updated 5 years ago
- Trying to make automated recon for bug bounties☆252Updated 3 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆38Updated 6 years ago
- Various Payload wordlists☆235Updated 4 years ago
- ☆423Updated 2 years ago
- Bug Bounty Dork☆71Updated 3 years ago
- Web Application recon automation☆124Updated 4 years ago
- ☆124Updated 4 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆208Updated 4 years ago
- You can read the writeup on this script here☆193Updated 3 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆365Updated 2 years ago
- ☆241Updated 6 years ago
- Create your Custom Wordlist For Fuzzing☆191Updated 4 months ago
- Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…☆101Updated last year
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆36Updated 9 years ago
- Usefull stuff from around teh internetz☆109Updated 7 years ago
- In-depth DNS Enumeration and Network Mapping☆33Updated 5 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆172Updated 3 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Updated 4 years ago
- A collection of tools I wrote for bug bounty or hacking and don't mind publishing it☆114Updated 4 months ago
- API Pentesting notes.☆96Updated 3 months ago