Alternatives and similar repositories for cth_wordlists:

Users that are interested in cth_wordlists are comparing it to the libraries listed below

• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• sharsi1 / sublazerwlst
  Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).
  ☆67Updated 6 years ago
• Drayko / Bot-Bounty
  Python Script for Telegram Bot is specially built for pentest & bug bounty. It's like a telegram shell.
  ☆55Updated 2 weeks ago
• sdnv0x4d / rasoff
  1C RAS Offensive Security Tool
  ☆25Updated last year
• honoki / bbrf-dashboard
  ☆37Updated 2 months ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 4 years ago
• jhonnybonny / nuclei-templates-bitrix
  Some nuclei templates for pentest CMS Bitrix
  ☆25Updated 2 months ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆80Updated 2 years ago
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆34Updated 3 years ago
• d34db33f-1007 / fuzz300
  Robust and blazing fast open-redirect vulnerability scanner with ability of recursevely crawling all of web-forms, entry points, or links…
  ☆39Updated 2 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• R0X4R / Agnee
  Find sensitive information using dorks from different search-engines.
  ☆90Updated 6 months ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• 0xAwali / WebSocketChecker
  Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages
  ☆46Updated 3 months ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• ztgrace / mole
  Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
  ☆57Updated 4 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆115Updated 4 years ago
• w4fz5uck5 / OSWE
  OSWE Preparation
  ☆37Updated 5 years ago
• redhuntlabs / Log4JHunt
  An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
  ☆43Updated 3 months ago
• k1rurk / check_bitrix
  Check bitrix vulnerabilities
  ☆73Updated last year
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆27Updated 2 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆55Updated 3 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆32Updated 2 years ago
• GainSec / TreeHouse-Wordlists
  Wordlist for Hacking, Penetration Testing, Vulnerability Assessments and More
  ☆59Updated 8 months ago
• ethicalhackingplayground / crlfmap
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆25Updated 4 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆87Updated 2 years ago
• honoki / bbrf-burp-plugin
  A BurpSuite plugin for BBRF
  ☆24Updated 5 months ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆55Updated last year
• HackCommander / PHP-info-cookie-stealer
  Payload generator to exfiltrate user cookies through the PHP info page bypassing the HttpOnly flag during XSS exploitation.
  ☆19Updated last year