Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2025-12-12 20:04:53 +01:00
Code Issues Projects Releases Wiki Activity
1676 commits 2 branches 30 tags 2.3 GiB
Commit graph

1676 commits

This branch
This branch
All branches
Author SHA1 Message Date
J-GainSec
9a6b80ed19
Create top-apk-params.txt 
Parameters from the Top 55 Android applications.
 2022-06-27 19:06:01 +02:00
Sana O
795bd9e37b Add sandbox, sb and stage 2022-06-27 12:31:20 +12:00
PinkDev1
8b3ccbedaa Fixed #538: Added credits to the relevant README 2022-06-24 00:32:45 -03:00
PinkDev1
74dbbb7f95 Added scraped-JWT-secrets.txt 2022-06-24 00:31:22 -03:00
PinkDev1
1cbee5afc8 Fixed #768: Created combined_subdomains.txt and appended "preprod-payroll" to it 2022-06-23 23:03:53 -03:00
PinkDev1
baaec330cf Added awesome-environment-variable-names.txt and an auto-updater github action 2022-06-23 21:55:49 -03:00
PinkDev1
a37dbe1d3d Zipped the max-length folder 2022-06-23 19:50:05 -03:00
PinkDev1
9be91ecd4e Zipped PHPInfo files 2022-06-23 19:44:08 -03:00
PinkDev1
ba70a134d9 raft-small-words.txt: Added more source code versioning systems 
Source: https://nitter.kavin.rocks/intigriti/status/1533050946212839424
 2022-06-23 19:36:36 -03:00
PinkDev1
c8bc8eb242 Fixed #770: Zipped files with problematic filenames 2022-06-23 19:32:39 -03:00
Sana O
f1613446e9 Add common 2 letter environment abbreviations 2022-06-23 14:48:28 +12:00
root
28152a11f3 Added README 2022-06-21 08:05:20 +02:00
root
1753648b46 More Wordlists Added 2nd 2022-06-20 23:54:15 +02:00
root
0e73109916 More Wordlists Added 2022-06-20 23:49:32 +02:00
root
d9c1ab4d08 Update Amounts 2022-06-20 22:01:18 +02:00
root
45abeea9ae Added Amounts 2022-06-20 21:30:28 +02:00
Pham Sy Minh
355b691d5e
Update dirsearch.txt 2022-06-18 13:52:57 +07:00
Kevin Hicks
c9486f6a41
add opnsense to default-passwords 2022-06-13 11:37:11 -05:00
ScreaM
6575cb17ac
Merge pull request #1 from aadarsh-screamy/aadarsh-screamy-patch-1 
Added tlds.
 2022-05-11 18:48:57 +05:30
ScreaM
b5e43148d2
Added tlds. 2022-05-11 18:47:43 +05:30
Aan
697ff095b7
Add Dysco(Dynamic PHP Shell Command for RCE) 
Dysco(Dynamic PHP Shell Command for RCE). This is example PHP Shell with support for dynamic RCE command, it's useful when you are don't know which php function is disabled.
 2022-05-06 01:42:28 +07:00
alins.ir
9255b8090b
Converting 500-worst-passwords.txt.bz2 to .txt 2022-05-05 19:24:56 +04:30
PinkDev1
b5d309c4d0 README.md: Added 'Cook' to related projects 2022-05-03 04:16:45 -03:00
cyberpathogen2018
ab7098789d
Fixed typo on line 26 
typo could result in false negative results.
 2022-04-30 23:19:40 -04:00
D3vil0per
3369b7df87
Update country-codes.txt 
Added uppercase codes
 2022-04-26 19:50:07 +02:00
GitHub Action
4eb28683ab [Github Action] Updated combined_words.txt 2022-04-26 16:51:13 +00:00
g0tmi1k
f5fa9786d1
Merge pull request #717 from g0tmi1k/release 
Update for 2022.2
 2022-04-26 17:49:00 +01:00
g0t mi1k
515d85b83c Update for 2022.2 2022-04-26 17:46:18 +01:00
GitHub Action
939734974b [Github Action] Updated combined_directories.txt 2022-04-26 16:33:54 +00:00
g0tmi1k
9bf9f2ea2a
Merge pull request #696 from ItsIgnacioPortal/master 
Create universally useful combined web discovery wordlists which auto-update
 2022-04-26 17:32:16 +01:00
g0tmi1k
0db72b1dfc
Merge pull request #707 from zevlag/patch-1 
Add Baicells default creds from CVE-2022-24693

Source: https://github.com/advisories/GHSA-7vmv-mpx6-985j
 2022-04-26 17:26:41 +01:00
g0tmi1k
635fadadf8
Merge pull request #708 from D3vil0per/patch-2 
Added methods from IANA source

Source: http://www.iana.org/assignments/http-methods/http-methods.xhtml#methods
 2022-04-26 17:26:16 +01:00
g0tmi1k
839b262087
Merge pull request #709 from azams/master 
Add another obfuscated php shell and check the disable_functions.
 2022-04-26 17:25:56 +01:00
g0tmi1k
2e82613b9b
Merge pull request #712 from righettod/master 
Sync with param-miner master repository.

1. Take content of the file **params** from the [PortSwigger/param-miner](https://github.com/PortSwigger/param-miner/blob/master/resources/params) repository (master branch).
2. Take the content of the file **burp-parameter-names.txt** from the [SecLists](https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/burp-parameter-names.txt) repository (master branch).
3. Unify the both content removing the duplicates via `cat params  burp-parameter-names.txt | sort -u > burp-parameter-names.txt`.
4. Add the parameter named **api-version** found into this [blog post](https://medium.com/xm-cyber/10-ways-of-gaining-control-over-azure-function-apps-7e7b84367ce6) about attacking Azure function apps.
 2022-04-26 17:25:07 +01:00
g0tmi1k
c12ada51d2
Merge pull request #714 from indigo-sadland/master 
Unicode encoded LFI payload
 2022-04-26 17:22:03 +01:00
g0tmi1k
115aace394
Merge pull request #715 from camercu/patch-1 
fix logic bug setting port number
 2022-04-26 17:21:21 +01:00
g0tmi1k
56a9cf192b
Merge pull request #716 from stoben/master 
Add Hangfire console

Source: https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-26 17:20:45 +01:00
Ben M Stokland
a7d0fc30a1
Add Hangfire console 
https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-20 21:32:18 +02:00
Cameron Unterberger
60ac224950
fix logic bug setting port number 2022-04-18 20:54:43 -04:00
indigo-sadland
694b4873eb
Nginx merge slashes path traversal vulnerability payload 2022-04-18 00:26:27 -07:00
indigo-sadland
46671534b5
unicode encoded lfi payload 2022-04-16 19:26:33 +03:00
indigo-sadland
6117632c0d
unicode encoded lfi payload 2022-04-16 19:05:01 +03:00
indigo-sadland
c49917ce1a
unicode encoded lfi payload 2022-04-16 18:58:45 +03:00
indigo-sadland
ce75be351d
unicode encoded lfi payload 2022-04-16 18:50:38 +03:00
Anatoliy
dcb3b852f9
Add files via upload 2022-04-13 23:44:43 +03:00
Dominique RIGHETTO
ac544a1876
Sync with param-miner master repo 2022-04-10 10:04:13 +02:00
azams
090addc816 Add another obfuscated php shell. 2022-04-02 05:25:23 -07:00
D3vil0per
7a42879a46
Added methods from IANA source 
Source: http://www.iana.org/assignments/http-methods/http-methods.xhtml#methods
 2022-04-02 14:25:20 +02:00
zevlag
806526b1dd
Add Baicells default creds from CVE-2022-24693 2022-03-30 10:37:15 -04:00
D3vil0per
3ad6e8ff8c
Create country-codes.txt 
According to the ISO 3166-1 standard. Useful for fuzzing elements like usernames as 'support-us' 'admin.us' 'helpdesk-US' and so on.
 2022-03-26 22:54:02 +01:00