Alternatives and similar repositories for cth_wordlists

Users that are interested in cth_wordlists are comparing it to the libraries listed below

• Drayko / Bot-Bounty
  Python Script for Telegram Bot is specially built for pentest & bug bounty. It's like a telegram shell.
  ☆55Updated 6 months ago
• R0X4R / Agnee
  Find sensitive information using dorks from different search-engines.
  ☆90Updated last year
• sdnv0x4d / rasoff
  1C RAS Offensive Security Tool
  ☆27Updated 2 years ago
• 0xAwali / WebSocketChecker
  Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages
  ☆54Updated 9 months ago
• sharsi1 / sublazerwlst
  Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).
  ☆66Updated 7 years ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• kleiton0x00 / CORS-one-liner
  A one liner Bash command which finds CORS in every possible endpoint.
  ☆148Updated 4 years ago
• U53RW4R3 / nuclei-fuzzer-templates
  My personal collection of nuclei templates made for fuzzing.
  ☆29Updated last year
• shiblisec / Kyubi
  A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidde…
  ☆126Updated last year
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆64Updated 5 years ago
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆34Updated 4 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• nico989 / B1pass3r
  Python tool to test known techniques to bypass 403 and 401 HTTP responses.
  ☆35Updated 2 years ago
• Proviesec / github-dorks
  Useful Github Dorks for BugBounty -
  ☆68Updated 2 years ago
• sharsi1 / russkiwlst
  Bundle of common passwords targeting RUSSIAN-speaking audience (parsed from big data leaks)
  ☆104Updated 6 years ago
• moeinfatehi / Backup-Finder
  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…
  ☆161Updated last year
• mishmashclone / yeyintminthuhtut-Awesome-Red-Teaming
  https://github.com/yeyintminthuhtut/Awesome-Red-Teaming
  ☆16Updated 3 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• carlospolop / Leakos
  ☆74Updated last year
• nullenc0de / reverse-apk
  ☆54Updated 11 months ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆86Updated 2 years ago
• R0X4R / Parshu
  Filter URLs to save your time.
  ☆60Updated 3 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• enenumxela / subdomains.sh
  A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.
  ☆80Updated 3 years ago
• AlecBlance / S3BucketList
  Chrome and Firefox extension that lists Amazon S3 Buckets while browsing
  ☆129Updated 2 months ago
• ethicalhackingplayground / dorkX
  Pipe different tools with google dork Scanner
  ☆56Updated 5 years ago
• 0xElkot / wp-json-extractor
  ☆19Updated 2 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆33Updated 3 years ago
• s4hm4d / shodanidb
  Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API
  ☆92Updated 2 years ago