Alternatives and similar repositories for cth_wordlists:

Users that are interested in cth_wordlists are comparing it to the libraries listed below

• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆27Updated 2 years ago
• Drayko / Bot-Bounty
  Python Script for Telegram Bot is specially built for pentest & bug bounty. It's like a telegram shell.
  ☆55Updated 2 years ago
• sharsi1 / sublazerwlst
  Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).
  ☆65Updated 6 years ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆49Updated 2 years ago
• R0X4R / Agnee
  Find sensitive information using dorks from different search-engines.
  ☆87Updated 2 months ago
• sdnv0x4d / rasoff
  1C RAS Offensive Security Tool
  ☆24Updated last year
• U53RW4R3 / nuclei-fuzzer-templates
  My personal collection of nuclei templates made for fuzzing.
  ☆27Updated 4 months ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 4 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆105Updated 3 years ago
• honoki / bbrf-dashboard
  ☆36Updated 2 months ago
• emadshanab / Huge_DIR_wordlist
  ☆47Updated 3 years ago
• carlospolop / Pastos
  ☆50Updated 2 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆53Updated last year
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆88Updated 2 years ago
• hcbaker / Klyda
  Highly configurable script for dictionary/spray attacks against online web applications.
  ☆53Updated 2 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆24Updated 2 years ago
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆62Updated 4 years ago
• 0xElkot / wp-json-extractor
  ☆16Updated last year
• w0ltage / subchase
  Chase subdomains by parsing the results of Google and Yandex search results
  ☆15Updated last year
• Alaa-abdulridha / SerpScan
  Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.
  ☆65Updated 3 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆39Updated last year
• d34db33f-1007 / fuzz300
  Robust and blazing fast open-redirect vulnerability scanner with ability of recursevely crawling all of web-forms, entry points, or links…
  ☆39Updated 2 years ago
• redhuntlabs / Log4JHunt
  An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
  ☆43Updated 3 years ago
• 0xAwali / WebSocketChecker
  Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages
  ☆23Updated this week
• data-hunters / metadata-digger-ai
  Code and result files (models, etc.) related to Metadata Digger's parts using Artificial Intelligence methods.
  ☆13Updated 4 years ago
• esabear / iis_tilde_enum
  Takes a URL and checks the system for the tilde enum vuln and then find the files.
  ☆22Updated 5 years ago
• xapax / xss-to-rce
  Javascript payload that inject a malicious payload into the copy-buffer of the victim
  ☆34Updated 6 years ago