trickest / wordlistsLinks
Real-world infosec wordlists, updated regularly
☆1,611Updated this week
Alternatives and similar repositories for wordlists
Users that are interested in wordlists are comparing it to the libraries listed below
Sorting:
- ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)☆920Updated 7 months ago
- A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.☆1,313Updated 3 weeks ago
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,457Updated 6 months ago
- Rockyou for web fuzzing☆2,989Updated 4 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!☆2,480Updated this week
- A repository that includes all the important wordlists used while bug hunting.☆1,367Updated 2 years ago
- An XSS exploitation command-line interface and payload generator.☆1,408Updated last year
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,465Updated last week
- An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.☆747Updated 2 years ago
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆1,021Updated last year
- bypass-url-parser☆1,107Updated last week
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,714Updated last year
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,556Updated 3 years ago
- Automated & Manual Wordlists provided by Assetnote☆1,587Updated 3 weeks ago
- A simple tool for bypassing file upload restrictions.☆888Updated last year
- Payload Arsenal for Pentration Tester and Bug Bounty Hunters☆913Updated last month
- A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.☆917Updated 2 months ago
- Useful Google Dorks for WebSecurity and Bug Bounty☆1,176Updated this week
- declutters url lists for crawling/pentesting☆1,518Updated 10 months ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,273Updated last year
- Subdomain takeover vulnerability checker☆1,492Updated last year
- Free, libre, effective, and data-driven wordlists for all!☆644Updated 4 years ago
- ProjectDiscovery's Open Source Tool Manager☆1,042Updated 2 weeks ago
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆730Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆2,071Updated last year
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,807Updated 5 months ago
- Sticky notes for pentesting, bug bounty, CTF.☆769Updated 5 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,507Updated 11 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,033Updated 4 months ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,275Updated 5 months ago