Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2026-04-21 06:25:01 +02:00
Code Issues Projects Releases Wiki Activity
1365 commits 2 branches 31 tags 2.3 GiB
Commit graph

1365 commits

This branch
This branch
All branches
Author SHA1 Message Date
g0tmi1k
7fb9827bfc
Merge pull request #784 from J-GainSec/patch-4 
Create forefront-identity-management

Source: https://raw.githubusercontent.com/GainSec/TreeHouse-Wordlists/master/Microsoft-Forefront-Identity-Management-2010.txt
 2022-08-02 06:25:23 +01:00
g0tmi1k
1ebd15c9e5
Merge pull request #786 from J-GainSec/patch-5 
Create uri-from-top-55-most-popular-apps.txt

Source:

https://github.com/danielmiessler/SecLists/pull/781#issuecomment-1168353194

https://twitter.com/nullenc0de/status/1425973675715612672

https://gist.github.com/nullenc0de/e9d1f2a8a0a38c9bfcb5bdb9fc7191ea
 2022-08-02 06:22:46 +01:00
g0tmi1k
2c424971ce
Merge pull request #795 from righettod/feature_add_sshkeyfiles 
Add additional ssh key file names

Source: `man ssh`
 2022-08-02 06:20:26 +01:00
Dominique RIGHETTO
20cb80229b
Add ssh key file name 2022-08-02 06:19:51 +02:00
g0tmi1k
edc55381b0
Merge pull request #790 from ItsIgnacioPortal/i770 
Fixes #770: Zipped files with problematic filenames
 2022-08-02 00:12:52 +01:00
GitHub Action
51bad1c320 [Github Action] Updated combined_words.txt 2022-08-01 23:11:39 +00:00
g0tmi1k
00c55dbad1
Merge pull request #792 from WKobes/add-activation 
Adds `activation' to common.txt
 2022-08-02 00:10:19 +01:00
g0tmi1k
f11c64cfc4
Merge pull request #794 from TalebQasem/patch-1 
Update LFI-gracefulsecurity-linux.txt

https://raw.githubusercontent.com/DragonJAR/Security-Wordlist/main/LFI-WordList-Linux
 2022-08-02 00:09:42 +01:00
Taleb Qasem
294ee04ad3
Update LFI-gracefulsecurity-linux.txt 
Removed 3 duplicates (/etc/passwd, /etc/mod, and /etc/php4/apache2/php.ini). Then added word list from (https://raw.githubusercontent.com/DragonJAR/Security-Wordlist/main/LFI-WordList-Linux).
 2022-07-27 21:16:50 +06:00
Wouter Kobes
f752b04a32 Adds activation to common.txt 2022-07-23 16:42:03 +02:00
J-GainSec
cda67688e9
Update uri-from-top-55-most-popular-apps.txt 
Removed a few useless entries
 2022-06-29 11:10:56 +02:00
J-GainSec
624b836211
Update uri-from-top-55-most-popular-apps.txt 
Removed leading slashes
 2022-06-28 21:31:50 +02:00
J-GainSec
77e7ea50cf
Update uri-from-top-55-most-popular-apps.txt 
Removed leading slashes.
 2022-06-28 21:30:54 +02:00
J-GainSec
0a09279658
Rename forefront-identity-management to forefront-identity-management.txt 2022-06-28 15:37:41 +02:00
J-GainSec
944a8deaf0
Create uri-from-top-55-most-popular-apps.txt 
Removed trailing slashes
 2022-06-28 15:17:38 +02:00
J-GainSec
06b0cddb2a
Create forefront-identity-management 
Sourced from https://raw.githubusercontent.com/GainSec/TreeHouse-Wordlists/master/Microsoft-Forefront-Identity-Management-2010.txt

Wordlist for Microsoft Forefront Identity Management 2010
 2022-06-27 19:25:35 +02:00
PinkDev1
a37dbe1d3d Zipped the max-length folder 2022-06-23 19:50:05 -03:00
PinkDev1
9be91ecd4e Zipped PHPInfo files 2022-06-23 19:44:08 -03:00
PinkDev1
c8bc8eb242 Fixed #770: Zipped files with problematic filenames 2022-06-23 19:32:39 -03:00
GitHub Action
4eb28683ab [Github Action] Updated combined_words.txt 2022-04-26 16:51:13 +00:00
g0tmi1k
f5fa9786d1
Merge pull request #717 from g0tmi1k/release 
Update for 2022.2
 2022-04-26 17:49:00 +01:00
g0t mi1k
515d85b83c Update for 2022.2 2022-04-26 17:46:18 +01:00
GitHub Action
939734974b [Github Action] Updated combined_directories.txt 2022-04-26 16:33:54 +00:00
g0tmi1k
9bf9f2ea2a
Merge pull request #696 from ItsIgnacioPortal/master 
Create universally useful combined web discovery wordlists which auto-update
 2022-04-26 17:32:16 +01:00
g0tmi1k
0db72b1dfc
Merge pull request #707 from zevlag/patch-1 
Add Baicells default creds from CVE-2022-24693

Source: https://github.com/advisories/GHSA-7vmv-mpx6-985j
 2022-04-26 17:26:41 +01:00
g0tmi1k
635fadadf8
Merge pull request #708 from D3vil0per/patch-2 
Added methods from IANA source

Source: http://www.iana.org/assignments/http-methods/http-methods.xhtml#methods
 2022-04-26 17:26:16 +01:00
g0tmi1k
839b262087
Merge pull request #709 from azams/master 
Add another obfuscated php shell and check the disable_functions.
 2022-04-26 17:25:56 +01:00
g0tmi1k
2e82613b9b
Merge pull request #712 from righettod/master 
Sync with param-miner master repository.

1. Take content of the file **params** from the [PortSwigger/param-miner](https://github.com/PortSwigger/param-miner/blob/master/resources/params) repository (master branch).
2. Take the content of the file **burp-parameter-names.txt** from the [SecLists](https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/burp-parameter-names.txt) repository (master branch).
3. Unify the both content removing the duplicates via `cat params  burp-parameter-names.txt | sort -u > burp-parameter-names.txt`.
4. Add the parameter named **api-version** found into this [blog post](https://medium.com/xm-cyber/10-ways-of-gaining-control-over-azure-function-apps-7e7b84367ce6) about attacking Azure function apps.
 2022-04-26 17:25:07 +01:00
g0tmi1k
c12ada51d2
Merge pull request #714 from indigo-sadland/master 
Unicode encoded LFI payload
 2022-04-26 17:22:03 +01:00
g0tmi1k
115aace394
Merge pull request #715 from camercu/patch-1 
fix logic bug setting port number
 2022-04-26 17:21:21 +01:00
g0tmi1k
56a9cf192b
Merge pull request #716 from stoben/master 
Add Hangfire console

Source: https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-26 17:20:45 +01:00
Ben M Stokland
a7d0fc30a1
Add Hangfire console 
https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-20 21:32:18 +02:00
Cameron Unterberger
60ac224950
fix logic bug setting port number 2022-04-18 20:54:43 -04:00
indigo-sadland
694b4873eb
Nginx merge slashes path traversal vulnerability payload 2022-04-18 00:26:27 -07:00
indigo-sadland
46671534b5
unicode encoded lfi payload 2022-04-16 19:26:33 +03:00
indigo-sadland
6117632c0d
unicode encoded lfi payload 2022-04-16 19:05:01 +03:00
indigo-sadland
c49917ce1a
unicode encoded lfi payload 2022-04-16 18:58:45 +03:00
indigo-sadland
ce75be351d
unicode encoded lfi payload 2022-04-16 18:50:38 +03:00
Dominique RIGHETTO
ac544a1876
Sync with param-miner master repo 2022-04-10 10:04:13 +02:00
azams
090addc816 Add another obfuscated php shell. 2022-04-02 05:25:23 -07:00
D3vil0per
7a42879a46
Added methods from IANA source 
Source: http://www.iana.org/assignments/http-methods/http-methods.xhtml#methods
 2022-04-02 14:25:20 +02:00
zevlag
806526b1dd
Add Baicells default creds from CVE-2022-24693 2022-03-30 10:37:15 -04:00
PinkDev1
2147ad87f7
quickhits.txt: restored to its initial state 
My previous two commits should've been on a different branch, Woops
 2022-02-21 06:41:14 +00:00
PinkDev1
66672f7299
quickhits.txt: Added more files 
Extracted from ShhGit: https://github.com/eth0izzle/shhgit/blob/master/config.yaml
 2022-02-21 06:34:36 +00:00
PinkDev1
58df3b3401
quickhits.txt: Removed trailing "/" 2022-02-21 06:32:19 +00:00
g0tmi1k
168584fdc6
Merge pull request #651 from cbk914/master 
Spring paths update
 2022-02-02 23:41:04 +00:00
g0tmi1k
c9ffe7f73c
Merge pull request #656 from A1vinSmith/master 
Update content-type.txt

https://cweiske.de/tagebuch/php-mimetype.htm
 2022-02-02 23:40:50 +00:00
g0tmi1k
c54e07f5d8
Merge pull request #671 from righettod/feature_issue_654 
PR for issue 654 (environment identifiers dict)
 2022-02-02 23:39:00 +00:00
g0tmi1k
6a51a9b354
Merge pull request #675 from RAOexe/master 
Add: Top common Indian forenames
 2022-02-02 23:37:48 +00:00
g0tmi1k
52fbc4a631
Merge pull request #680 from 5tr1x/patch-3 
Create months.txt

for i in `cat $1`; do echo ${i}; echo ${i}2019; echo ${i}2020; echo ${i}2021; echo ${i}2022; echo ${i}1; echo ${i}123; done >> n
for i in `cat n`; do echo ${i}; echo ${i}'!'; echo ${i}'@'; echo ${i}'#'; echo ${i}'$'; echo ${i}'%'; echo ${i}'^'; echo ${i}'&'; echo ${i}'*'; echo ${i}'?'; done >> s
hashcat s -r /usr/share/hashcat/rules/leetspeak.rule --stdout > hc
wordlister --input s --perm 1 --min 4 --max 48 --leet &>/dev/null
mv output.txt wl
cat hc wl | sort -u > vvv
wordlister --input vvv --perm 1 --min 4 --max 48 --cap --up &>/dev/null
cat output.txt | sort -u > $2
rm n s hc wl vvv output.txt
 2022-02-02 23:36:41 +00:00