Alternatives and similar repositories for cth_wordlists

Users that are interested in cth_wordlists are comparing it to the libraries listed below

• sdnv0x4d / rasoff
  1C RAS Offensive Security Tool
  ☆26Updated last year
• Drayko / Bot-Bounty
  Python Script for Telegram Bot is specially built for pentest & bug bounty. It's like a telegram shell.
  ☆56Updated 3 months ago
• R0X4R / Agnee
  Find sensitive information using dorks from different search-engines.
  ☆90Updated 8 months ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• carlospolop / Leakos
  ☆74Updated last year
• sharsi1 / sublazerwlst
  Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).
  ☆67Updated 7 years ago
• carlospolop / Pastos
  ☆56Updated 2 years ago
• moeinfatehi / Backup-Finder
  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…
  ☆162Updated last year
• sharsi1 / russkiwlst
  Bundle of common passwords targeting RUSSIAN-speaking audience (parsed from big data leaks)
  ☆99Updated 6 years ago
• AlecBlance / S3BucketList
  Chrome and Firefox extension that lists Amazon S3 Buckets while browsing
  ☆100Updated last month
• 0xAwali / WebSocketChecker
  Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages
  ☆48Updated 6 months ago
• k1rurk / check_bitrix
  Check bitrix vulnerabilities
  ☆75Updated last year
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆34Updated 4 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆57Updated 3 years ago
• SeifElsallamy / gip
  Google IP Search Engine
  ☆149Updated 3 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• jhonnybonny / nuclei-templates-bitrix
  Some nuclei templates for pentest CMS Bitrix
  ☆32Updated last month
• enenumxela / subdomains.sh
  A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.
  ☆79Updated 2 years ago
• kleiton0x00 / CORS-one-liner
  A one liner Bash command which finds CORS in every possible endpoint.
  ☆148Updated 4 years ago
• carlospolop / Gorks
  ☆68Updated 2 years ago
• shiblisec / Kyubi
  A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidde…
  ☆125Updated last year
• HackCommander / PHP-info-cookie-stealer
  Payload generator to exfiltrate user cookies through the PHP info page bypassing the HttpOnly flag during XSS exploitation.
  ☆19Updated last year
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆29Updated 2 years ago
• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆65Updated 3 years ago
• iGotRootSRC / Dorkers
  Dorks for Google, Shodan and BinaryEdge
  ☆144Updated 5 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆44Updated last year
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆85Updated 2 years ago
• U53RW4R3 / nuclei-fuzzer-templates
  My personal collection of nuclei templates made for fuzzing.
  ☆27Updated 10 months ago
• EasyRecon / wappaGo
  ☆57Updated last year