From 46789a06c9c5421a56bf3d12a6cce84eb9d96f48 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 22:09:33 -0300 Subject: [PATCH 01/17] fix(docs): Fixed formatting --- Discovery/Web-Content/Service-Specific/README.md | 2 +- Discovery/Web-Content/Web-Servers/README.md | 13 ++++++++----- 2 files changed, 9 insertions(+), 6 deletions(-) diff --git a/Discovery/Web-Content/Service-Specific/README.md b/Discovery/Web-Content/Service-Specific/README.md index eda7acea..7ccb54c3 100644 --- a/Discovery/Web-Content/Service-Specific/README.md +++ b/Discovery/Web-Content/Service-Specific/README.md @@ -5,7 +5,7 @@ These wordlists are for testing specific web-based services. ## Microsoft-Forefront-Identity-Manager.txt Use for: Fuzzing for common filepaths in **[Microsoft Forefront Identity Manager](https://learn.microsoft.com/en-us/previous-versions/windows/desktop/forefront-2010/ee652374(v=vs.100)) deployments.** -Date of the first release of Microsoft Forefront Identity Manager: [2010-05-27](https://learn.microsoft.com/en-us/lifecycle/products/?terms=forefront%20identity) +Date of the first release of Microsoft Forefront Identity Manager: [2010-05-27](https://learn.microsoft.com/en-us/lifecycle/products/?terms=forefront%20identity) Date of the last release of Microsoft Forefront Identity Manager: 2013-01-15 Date of last wordlist update: May 14, 2020 \ No newline at end of file diff --git a/Discovery/Web-Content/Web-Servers/README.md b/Discovery/Web-Content/Web-Servers/README.md index 54726385..3d474d27 100644 --- a/Discovery/Web-Content/Web-Servers/README.md +++ b/Discovery/Web-Content/Web-Servers/README.md @@ -5,7 +5,7 @@ The wordlists contained in this directory are specific for testing certain **web ## Java-Servlet-Runner-Adobe-JRun Use for: Fuzzing for common filepaths in webpages served with **[Java Servlet Runner (Adobe JRun)](https://adobe.fandom.com/wiki/JRun)** -Year of the first release of Java Servlet Runner (Adobe JRun): 1997 +Year of the first release of Java Servlet Runner (Adobe JRun): 1997 Year of the last release of Java Servlet Runner (Adobe JRun): 2007 Date of last update: Oct 14, 2010 @@ -14,7 +14,7 @@ Date of last update: Oct 14, 2010 ## Oracle-Sun-iPlanet.txt Use for: Fuzzing for common filepaths in webpages served with **[Oracle Sun iPlanet](https://www.oracle.com/middleware/technologies/webtier.html)** -Year of the first release of Sun-iPlanet (Adobe JRun): 1994 +Year of the first release of Sun-iPlanet (Adobe JRun): 1994 Year of the last release of Sun-iPlanet (Adobe JRun): 2017 Date of last update: Oct 14, 2010 @@ -23,7 +23,7 @@ Date of last update: Oct 14, 2010 ## Glassfish-Sun-Microsystems.txt Use for: Fuzzing for common filepaths in webpages served with **[Glassfish - Sun Microsystems](https://glassfish.org/)** -Year of the first release of Glassfish: [2005](https://en.wikipedia.org/wiki/GlassFish) +Year of the first release of Glassfish: [2005](https://en.wikipedia.org/wiki/GlassFish) Glassfish is still in recieving updates as of 2024. Date of last update: Oct 14, 2010 @@ -31,11 +31,13 @@ Date of last update: Oct 14, 2010 ## Apache.fuzz.txt Use for: Discvering sensitive content in Apache web servers. + Date of last update: Jan 26, 2015 ## Apache-Tomcat.txt Use for: Discovering sensitive content in Apache Tomcat servers. + Date of last update: Dec 14, 2017 @@ -43,6 +45,7 @@ Date of last update: Dec 14, 2017 Use for: Fuzzing the `/aspnet_client/system_web/` directory on [Microsoft IIS](https://www.iis.net/) servers to detect **CGIs** and **scripts** even even if the two ladder directories are inaccessible. Reference: https://github.com/irsdl/IIS-ShortName-Scanner + Discussion: https://github.com/danielmiessler/SecLists/pull/783 <<<<<<< HEAD @@ -52,7 +55,7 @@ Date of last update: Jun 27, 2022 ## JBoss.txt Use for: Fuzzing for common filepaths in webpages served with **[JBoss - RedHat](https://jbossas.jboss.org)** (not to be confused with "JBoss EAP"). -Date of the first release of JBoss: [2002-05-29](https://jbossas.jboss.org/downloads/) +Date of the first release of JBoss: [2002-05-29](https://jbossas.jboss.org/downloads/) Date of the last release of JBoss: 2012-03-09 Date of last wordlist update: Feb 27, 2014 @@ -61,7 +64,7 @@ Date of last wordlist update: Feb 27, 2014 ## Apache-Axis.txt Use for: Fuzzing for common filepaths in webpages created with **[Apache Axis](https://axis.apache.org/axis/)** -Date of the first release of Apache Axis: [2002-10-07](https://jbossas.jboss.org/downloads/) +Date of the first release of Apache Axis: [2002-10-07](https://jbossas.jboss.org/downloads/) Date of the last release of Apache Axis: 2006-04-22 ======= Date of last update: Jun 27, 2022 From e1f29931bb3d2ae6a2d54ca530aca0610312f6a6 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 22:06:49 -0300 Subject: [PATCH 02/17] fix(docs): Fixed formatting and wording --- Discovery/Web-Content/README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/Discovery/Web-Content/README.md b/Discovery/Web-Content/README.md index 2f3a0c97..3a753249 100644 --- a/Discovery/Web-Content/README.md +++ b/Discovery/Web-Content/README.md @@ -54,10 +54,11 @@ This list is a combination of the following wordlists: ## combined_directories.txt -Use for: discovering files and directories +Use for: discovering files and directories + This list is automatically updated by a github action whenever any of the lists it's composed by is modified. -This list is a combination of the following wordlists: +These are the wordlists that compose this wordlist: - apache.txt - combined_words.txt - directory-list-1.0.txt From eb99dc47d58771af80b33e392f53c99e56868b6a Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 22:04:46 -0300 Subject: [PATCH 03/17] fix(docs): Fixed formatting of README.md --- Discovery/Web-Content/README.md | 19 ++++++++++++++----- 1 file changed, 14 insertions(+), 5 deletions(-) diff --git a/Discovery/Web-Content/README.md b/Discovery/Web-Content/README.md index 3a753249..6cd7158b 100644 --- a/Discovery/Web-Content/README.md +++ b/Discovery/Web-Content/README.md @@ -7,17 +7,24 @@ No updates have been made to this wordlist since its creation. ## AdobeXML.fuzz.txt Use for: Discovering sensitive filepaths of **Adobe ColdFusion** + Creation date: Aug 27, 2012 + No updates have been made to this wordlist since its creation. + ## CGI-HTTP-POST-Windows.fuzz.txt Use for: Exploiting various vulnerabilities in the now defunct WYSIWYG HTML editor and website administration tool, [Microsoft FrontPage](https://en.wikipedia.org/wiki/Microsoft_FrontPage) + Source: https://github.com/deepak0401/Front-Page-Exploit + Date of last update: Aug 27, 2012 + The last version of FrontPage was released on 2003. ## CGI-HTTP-POST.fuzz.txt Use for: Exploiting/Discovering various vulnerabilities in extremely old systems (Circa 1998) that use "CGI". + Date of last update: Aug 27, 2012 This wordlist tests for the following vulnerabilities: @@ -27,14 +34,19 @@ This wordlist tests for the following vulnerabilities: - Remote File Include in **[myPHPNuke](https://web.archive.org/web/20140812223623/http://www.myphpnuke.com/)**. Source: [Nessus](https://www.tenable.com/plugins/nessus/11836) - DoS in the **"D-Link Ethernet/Fast Ethernet Print Server DP-300+"**. Source: [Sullo's Security Advisory Archive](https://raw.githubusercontent.com/sullo/advisory-archives/master/phenoelit.de_dp-300.txt). + ## CGI-Microsoft.fuzz.txt Use for: Exploiting/Discovering various vulnerabilities in miscelaneous CGI scripts that run on Microsoft operating systems. + Date of last update: Aug 27, 2012 + ## raft-* wordlists Use for: Directory and file brute-forcing leading to identification of vulnerabilities in web applications. + Source: [Google's RAFT](https://code.google.com/archive/p/raft/) + ## combined_words.txt Use for: discovering files @@ -79,7 +91,6 @@ Use for: discovering files and directories ### Source This list is automatically updated by a GitHub action whenever any of the lists it's composed by is modified. - ## dsstorewordlist.txt SOURCE: https://github.com/aels/subdirectories-discover @@ -89,6 +100,7 @@ Perfect wordlist to discover directories and files on target site with tools lik - Then sorted by probability and removed strings with one occurrence. - resulted file you can download is below. Happy Hunting! + ## vulnerability-scan_j2ee-websites_WEB-INF.txt Use for: discovering sensitive j2ee files exploiting a lfi @@ -103,6 +115,7 @@ References: Use for: Fuzzing for common filepaths in webpages designed with **[Microsoft Frontpage](https://en.wikipedia.org/wiki/Microsoft_FrontPage)** Year of the first release of Microsoft Frontpage: 1997 +Year of the last release of Microsoft Frontpage: 2003 ## Oracle-EBS-wordlist.txt Use for: Fuzzing for common filepaths of [Oracle E-Business Suite](https://www.oracle.com/applications/ebusiness/) (EBS) version 11. @@ -126,7 +139,6 @@ Reference: https://the-infosec.com/2017/03/29/do-you-know-what-your-erp-is-telli Date of last update: Oct 7, 2019 -<<<<<<< HEAD ## iis-systemweb.txt Use for: Fuzzing the `/aspnet_client/system_web/` directory on [Microsoft IIS](https://www.iis.net/) servers to detect **CGIs** and **scripts** even even if the two ladder directories are inaccessible. @@ -134,6 +146,3 @@ Reference: https://github.com/irsdl/IIS-ShortName-Scanner Discussion: https://github.com/danielmiessler/SecLists/pull/783 Date of last update: Jun 27, 2022 -======= -Date of last update: Oct 14, 2010 ->>>>>>> 0a6cbb9c (feat(docs): Moved Web-Server wordlists into their own directory) From 32746dd3bf072bd6f9ac5930feade154376deee6 Mon Sep 17 00:00:00 2001 From: ItsIgnacioPortal <5990@protonmail.com> Date: Fri, 21 Feb 2025 20:25:23 -0300 Subject: [PATCH 04/17] fix(docs): Removed leftover text from git merge conflict --- Discovery/Web-Content/Web-Servers/README.md | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/Discovery/Web-Content/Web-Servers/README.md b/Discovery/Web-Content/Web-Servers/README.md index 3d474d27..9ef8b717 100644 --- a/Discovery/Web-Content/Web-Servers/README.md +++ b/Discovery/Web-Content/Web-Servers/README.md @@ -48,7 +48,6 @@ Reference: https://github.com/irsdl/IIS-ShortName-Scanner Discussion: https://github.com/danielmiessler/SecLists/pull/783 -<<<<<<< HEAD Date of last update: Jun 27, 2022 @@ -65,7 +64,4 @@ Date of last wordlist update: Feb 27, 2014 Use for: Fuzzing for common filepaths in webpages created with **[Apache Axis](https://axis.apache.org/axis/)** Date of the first release of Apache Axis: [2002-10-07](https://jbossas.jboss.org/downloads/) -Date of the last release of Apache Axis: 2006-04-22 -======= -Date of last update: Jun 27, 2022 ->>>>>>> 0a6cbb9c (feat(docs): Moved Web-Server wordlists into their own directory) +Date of the last release of Apache Axis: 2006-04-22 \ No newline at end of file From 9034c8bcc12ceed85c08fe3b87b908acea22e89b Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 17:48:50 -0300 Subject: [PATCH 05/17] fix(docs): Moved 'AdobeCQ-AEM.txt' into the CMS directory --- .../Web-Content/{ => CMS}/AdobeCQ-AEM.txt | 0 Discovery/Web-Content/CMS/README.md | 30 +++++++++++++++++++ Discovery/Web-Content/README.md | 5 ---- 3 files changed, 30 insertions(+), 5 deletions(-) rename Discovery/Web-Content/{ => CMS}/AdobeCQ-AEM.txt (100%) create mode 100644 Discovery/Web-Content/CMS/README.md diff --git a/Discovery/Web-Content/AdobeCQ-AEM.txt b/Discovery/Web-Content/CMS/AdobeCQ-AEM.txt similarity index 100% rename from Discovery/Web-Content/AdobeCQ-AEM.txt rename to Discovery/Web-Content/CMS/AdobeCQ-AEM.txt diff --git a/Discovery/Web-Content/CMS/README.md b/Discovery/Web-Content/CMS/README.md new file mode 100644 index 00000000..619e3282 --- /dev/null +++ b/Discovery/Web-Content/CMS/README.md @@ -0,0 +1,30 @@ +# CMS Wordlists + +These wordlists are specific to Content Management Systems. + +## AdobeCQ-AEM.txt +Use for: Discovering sensitive filepaths of **Adobe Experience Manager** +Creation date: Oct 1, 2017 +No updates have been made to this wordlist since its creation. + + +## Oracle-EBS-wordlist.txt +Use for: Fuzzing for common filepaths of [Oracle E-Business Suite](https://www.oracle.com/applications/ebusiness/) (EBS) version 11. + +EBS v11 exposes: +- usernames +- ports +- OS information +- protocol information +- Unauthenticated file upload +- Cookie contents +- SHA-1 hashed passwords + +As an Unauthenticated user it's also possible to: +- Create forms +- Get servlets status +- Get certain configuration files + +Reference: https://the-infosec.com/2017/03/29/do-you-know-what-your-erp-is-telling-us/ + +Date of last update: Oct 7, 2019 \ No newline at end of file diff --git a/Discovery/Web-Content/README.md b/Discovery/Web-Content/README.md index 6cd7158b..ca3849cd 100644 --- a/Discovery/Web-Content/README.md +++ b/Discovery/Web-Content/README.md @@ -1,10 +1,5 @@ # Web discovery wordlists -## AdobeCQ-AEM.txt -Use for: Discovering sensitive filepaths of **Adobe Experience Manager** -Creation date: Oct 1, 2017 -No updates have been made to this wordlist since its creation. - ## AdobeXML.fuzz.txt Use for: Discovering sensitive filepaths of **Adobe ColdFusion** From 8c898967ef5100c305effa3b2e3511298995e458 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 21:35:58 -0300 Subject: [PATCH 06/17] fix(docs): Moved 'aem2.txt' into the CMS directory --- Discovery/Web-Content/{aem2.txt => CMS/Adobe-AEM_2021.txt} | 0 .../Web-Content/CMS/{AdobeCQ-AEM.txt => AdobeCQ-AEM_2017.txt} | 0 Discovery/Web-Content/CMS/README.md | 2 +- 3 files changed, 1 insertion(+), 1 deletion(-) rename Discovery/Web-Content/{aem2.txt => CMS/Adobe-AEM_2021.txt} (100%) rename Discovery/Web-Content/CMS/{AdobeCQ-AEM.txt => AdobeCQ-AEM_2017.txt} (100%) diff --git a/Discovery/Web-Content/aem2.txt b/Discovery/Web-Content/CMS/Adobe-AEM_2021.txt similarity index 100% rename from Discovery/Web-Content/aem2.txt rename to Discovery/Web-Content/CMS/Adobe-AEM_2021.txt diff --git a/Discovery/Web-Content/CMS/AdobeCQ-AEM.txt b/Discovery/Web-Content/CMS/AdobeCQ-AEM_2017.txt similarity index 100% rename from Discovery/Web-Content/CMS/AdobeCQ-AEM.txt rename to Discovery/Web-Content/CMS/AdobeCQ-AEM_2017.txt diff --git a/Discovery/Web-Content/CMS/README.md b/Discovery/Web-Content/CMS/README.md index 619e3282..7b11cf8a 100644 --- a/Discovery/Web-Content/CMS/README.md +++ b/Discovery/Web-Content/CMS/README.md @@ -2,7 +2,7 @@ These wordlists are specific to Content Management Systems. -## AdobeCQ-AEM.txt +## AdobeCQ-AEM_2017.txt Use for: Discovering sensitive filepaths of **Adobe Experience Manager** Creation date: Oct 1, 2017 No updates have been made to this wordlist since its creation. From 7e59a71bc2e921d7cc5c238aa6fa65b285fdbeb5 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 21:39:38 -0300 Subject: [PATCH 07/17] fix(docs): Moved 'axis.txt' into the Web-Servers directory From add52fdbec7353202fb3864a64697b6e630fc6cd Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 19:18:09 -0300 Subject: [PATCH 08/17] fix(docs): Moved 'Confluence-Administration.txt' into the Service-Specific directory --- .../{ => Service-Specific}/confluence-administration.txt | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{ => Service-Specific}/confluence-administration.txt (100%) diff --git a/Discovery/Web-Content/confluence-administration.txt b/Discovery/Web-Content/Service-Specific/confluence-administration.txt similarity index 100% rename from Discovery/Web-Content/confluence-administration.txt rename to Discovery/Web-Content/Service-Specific/confluence-administration.txt From edaa0574b8b5999ba231551506610ee8b7551a83 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 21:55:42 -0300 Subject: [PATCH 09/17] fix(docs): Moved 'forefront-identity-management.txt' into the Service-Specific directory From dffae6e61a6372e8f9e492b4c1ba441ecf9719d8 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 19:28:49 -0300 Subject: [PATCH 10/17] fix(docs): Moved 'jboss.txt' into the Web-Servers directory --- Discovery/Web-Content/{jboss.txt => Web-Servers/JBoss.txt} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{jboss.txt => Web-Servers/JBoss.txt} (100%) diff --git a/Discovery/Web-Content/jboss.txt b/Discovery/Web-Content/Web-Servers/JBoss.txt similarity index 100% rename from Discovery/Web-Content/jboss.txt rename to Discovery/Web-Content/Web-Servers/JBoss.txt From c295d9ea543afdebfeed96302f04847ceca1e98d Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 19:13:21 -0300 Subject: [PATCH 11/17] fix(docs): Moved 'Jenkins-Hudson.txt' into the Service-Specific directory --- Discovery/Web-Content/{ => Service-Specific}/Jenkins-Hudson.txt | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{ => Service-Specific}/Jenkins-Hudson.txt (100%) diff --git a/Discovery/Web-Content/Jenkins-Hudson.txt b/Discovery/Web-Content/Service-Specific/Jenkins-Hudson.txt similarity index 100% rename from Discovery/Web-Content/Jenkins-Hudson.txt rename to Discovery/Web-Content/Service-Specific/Jenkins-Hudson.txt From c64816af735462596a003f4ed680e6e61e3ee180 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 18:51:40 -0300 Subject: [PATCH 12/17] fix(docs): Moved 'nginx.txt' into the Web-Servers directory --- Discovery/Web-Content/{ => Web-Servers}/nginx.txt | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{ => Web-Servers}/nginx.txt (100%) diff --git a/Discovery/Web-Content/nginx.txt b/Discovery/Web-Content/Web-Servers/nginx.txt similarity index 100% rename from Discovery/Web-Content/nginx.txt rename to Discovery/Web-Content/Web-Servers/nginx.txt From fc763093b5ad06c0415eaf7c7a7c9a05bb3282e1 Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 17:48:27 -0300 Subject: [PATCH 13/17] fix(docs): Moved 'Oracle-EBS-wordlist.txt' into the CMS directory --- .../{ => CMS}/Oracle-EBS-wordlist.txt | 0 Discovery/Web-Content/README.md | 32 +------------------ 2 files changed, 1 insertion(+), 31 deletions(-) rename Discovery/Web-Content/{ => CMS}/Oracle-EBS-wordlist.txt (100%) diff --git a/Discovery/Web-Content/Oracle-EBS-wordlist.txt b/Discovery/Web-Content/CMS/Oracle-EBS-wordlist.txt similarity index 100% rename from Discovery/Web-Content/Oracle-EBS-wordlist.txt rename to Discovery/Web-Content/CMS/Oracle-EBS-wordlist.txt diff --git a/Discovery/Web-Content/README.md b/Discovery/Web-Content/README.md index ca3849cd..cf4596e6 100644 --- a/Discovery/Web-Content/README.md +++ b/Discovery/Web-Content/README.md @@ -110,34 +110,4 @@ References: Use for: Fuzzing for common filepaths in webpages designed with **[Microsoft Frontpage](https://en.wikipedia.org/wiki/Microsoft_FrontPage)** Year of the first release of Microsoft Frontpage: 1997 -Year of the last release of Microsoft Frontpage: 2003 - -## Oracle-EBS-wordlist.txt -Use for: Fuzzing for common filepaths of [Oracle E-Business Suite](https://www.oracle.com/applications/ebusiness/) (EBS) version 11. - -EBS v11 exposes: -- usernames -- ports -- OS information -- protocol information -- Unauthenticated file upload -- Cookie contents -- SHA-1 hashed passwords - -As an Unauthenticated user it's also possible to: -- Create forms -- Get servlets status -- Get certain configuration files - -Reference: https://the-infosec.com/2017/03/29/do-you-know-what-your-erp-is-telling-us/ - -Date of last update: Oct 7, 2019 - - -## iis-systemweb.txt -Use for: Fuzzing the `/aspnet_client/system_web/` directory on [Microsoft IIS](https://www.iis.net/) servers to detect **CGIs** and **scripts** even even if the two ladder directories are inaccessible. - -Reference: https://github.com/irsdl/IIS-ShortName-Scanner -Discussion: https://github.com/danielmiessler/SecLists/pull/783 - -Date of last update: Jun 27, 2022 +Year of the last release of Microsoft Frontpage: 2003 \ No newline at end of file From 5110b012f3ff407243ef2d098ce796531a8602eb Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 20:28:39 -0300 Subject: [PATCH 14/17] fix(docs): Moved 'sharepoint-ennumeration.txt' into the CMS directory --- .../Sharepoint-Ennumeration.txt} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{sharepoint-ennumeration.txt => CMS/Sharepoint-Ennumeration.txt} (100%) diff --git a/Discovery/Web-Content/sharepoint-ennumeration.txt b/Discovery/Web-Content/CMS/Sharepoint-Ennumeration.txt similarity index 100% rename from Discovery/Web-Content/sharepoint-ennumeration.txt rename to Discovery/Web-Content/CMS/Sharepoint-Ennumeration.txt From 55453062c5c7642558620ab75cc039d1b04ac5ad Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 21:17:02 -0300 Subject: [PATCH 15/17] fix(docs): Moved 'spring-boot.txt' into the Programming-Language-Specific directory --- .../Java-Spring-Boot.txt} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{spring-boot.txt => Programming-Language-Specific/Java-Spring-Boot.txt} (100%) diff --git a/Discovery/Web-Content/spring-boot.txt b/Discovery/Web-Content/Programming-Language-Specific/Java-Spring-Boot.txt similarity index 100% rename from Discovery/Web-Content/spring-boot.txt rename to Discovery/Web-Content/Programming-Language-Specific/Java-Spring-Boot.txt From 7a6a191bb006f521fa6d380cc0129b9cad4acc2d Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 21:12:10 -0300 Subject: [PATCH 16/17] fix(docs): Moved 'swagger.txt' into the Service-Specific directory --- .../Web-Content/{swagger.txt => Service-Specific/Swagger.txt} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename Discovery/Web-Content/{swagger.txt => Service-Specific/Swagger.txt} (100%) diff --git a/Discovery/Web-Content/swagger.txt b/Discovery/Web-Content/Service-Specific/Swagger.txt similarity index 100% rename from Discovery/Web-Content/swagger.txt rename to Discovery/Web-Content/Service-Specific/Swagger.txt From 7fbdcf36856e9a4ea0e58b21ae555e08f009004f Mon Sep 17 00:00:00 2001 From: "Ignacio J. Perez Portal" <5990@protonmail.com> Date: Wed, 9 Oct 2024 06:04:29 -0300 Subject: [PATCH 17/17] fix(docs): Updated filename of wordlist in readme.md --- Discovery/Web-Content/README.md | 1 - 1 file changed, 1 deletion(-) diff --git a/Discovery/Web-Content/README.md b/Discovery/Web-Content/README.md index cf4596e6..542dcdd3 100644 --- a/Discovery/Web-Content/README.md +++ b/Discovery/Web-Content/README.md @@ -7,7 +7,6 @@ Creation date: Aug 27, 2012 No updates have been made to this wordlist since its creation. - ## CGI-HTTP-POST-Windows.fuzz.txt Use for: Exploiting various vulnerabilities in the now defunct WYSIWYG HTML editor and website administration tool, [Microsoft FrontPage](https://en.wikipedia.org/wiki/Microsoft_FrontPage)