Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2025-12-27 11:14:13 +01:00
Code Issues Projects Releases Wiki Activity
1350 commits 2 branches 30 tags 2.4 GiB
Commit graph

443 commits

Author SHA1 Message Date
J-GainSec
cda67688e9
Update uri-from-top-55-most-popular-apps.txt 
Removed a few useless entries
 2022-06-29 11:10:56 +02:00
J-GainSec
77e7ea50cf
Update uri-from-top-55-most-popular-apps.txt 
Removed leading slashes.
 2022-06-28 21:30:54 +02:00
J-GainSec
944a8deaf0
Create uri-from-top-55-most-popular-apps.txt 
Removed trailing slashes
 2022-06-28 15:17:38 +02:00
GitHub Action
4eb28683ab [Github Action] Updated combined_words.txt 2022-04-26 16:51:13 +00:00
GitHub Action
939734974b [Github Action] Updated combined_directories.txt 2022-04-26 16:33:54 +00:00
g0tmi1k
9bf9f2ea2a
Merge pull request #696 from ItsIgnacioPortal/master 
Create universally useful combined web discovery wordlists which auto-update
 2022-04-26 17:32:16 +01:00
g0tmi1k
2e82613b9b
Merge pull request #712 from righettod/master 
Sync with param-miner master repository.

1. Take content of the file **params** from the [PortSwigger/param-miner](https://github.com/PortSwigger/param-miner/blob/master/resources/params) repository (master branch).
2. Take the content of the file **burp-parameter-names.txt** from the [SecLists](https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/burp-parameter-names.txt) repository (master branch).
3. Unify the both content removing the duplicates via `cat params  burp-parameter-names.txt | sort -u > burp-parameter-names.txt`.
4. Add the parameter named **api-version** found into this [blog post](https://medium.com/xm-cyber/10-ways-of-gaining-control-over-azure-function-apps-7e7b84367ce6) about attacking Azure function apps.
 2022-04-26 17:25:07 +01:00
Ben M Stokland
a7d0fc30a1
Add Hangfire console 
https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-20 21:32:18 +02:00
Dominique RIGHETTO
ac544a1876
Sync with param-miner master repo 2022-04-10 10:04:13 +02:00
PinkDev1
2147ad87f7
quickhits.txt: restored to its initial state 
My previous two commits should've been on a different branch, Woops
 2022-02-21 06:41:14 +00:00
PinkDev1
66672f7299
quickhits.txt: Added more files 
Extracted from ShhGit: https://github.com/eth0izzle/shhgit/blob/master/config.yaml
 2022-02-21 06:34:36 +00:00
PinkDev1
58df3b3401
quickhits.txt: Removed trailing "/" 2022-02-21 06:32:19 +00:00
g0tmi1k
168584fdc6
Merge pull request #651 from cbk914/master 
Spring paths update
 2022-02-02 23:41:04 +00:00
g0tmi1k
a537fd9ad4
Merge pull request #693 from giper45/master 
Added italian subdomains
 2022-02-02 23:34:42 +00:00
Paul Werther
8b17578f93 add opcache to raft large directory list, #683 2022-02-01 15:32:17 +01:00
g0tmi1k
58370984a4
Merge pull request #687 from righettod/master 
Add "h2-console" word

https://mp.weixin.qq.com/s/Yn5U8WHGJZbTJsxwUU3UiQ
https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console
https://www.shodan.io/search?query=http.title%3A%22H2+Console%22
 2022-01-31 23:22:06 +00:00
g0tmi1k
5a4d4f7ebc
Merge pull request #686 from AddaxSoft/patch-2 
added 8443, tomcat ssl
 2022-01-31 23:21:24 +00:00
g0tmi1k
2dac179038
Merge pull request #685 from wdahlenburg/master 
Adding Spring Boot Gateway Actuator

https://wya.pl/2021/12/20/bring-your-own-ssrf-the-gateway-actuator/
 2022-01-31 23:20:57 +00:00
g0tmi1k
6dd17288aa
Merge pull request #678 from righettod/feature_update_namelist 
Add new sub domain names

https://github.com/righettod/toolbox-pentest-web/blob/master/scripts/generate-vhost-names-dict.sh
 2022-01-31 23:09:45 +00:00
PinkDev1
90a1f6ad0a
Delete test.txt 2022-01-29 06:24:47 +00:00
PinkDev1
136146f3ef
Create README.md at Discovery/Web-Content 
I feel like every folder on this repo should have a README. Some wordlists have very confusing names
 2022-01-29 06:23:04 +00:00
GitHub Action
590c1e39ed [Github Action] Updated combined_words.txt 2022-01-29 06:07:16 +00:00
PinkDev1
35149384ca
This is a github action test 2022-01-29 06:06:05 +00:00
GitHub Action
07375693f8 [Github Action] Updated combined_directories.txt 2022-01-29 06:05:17 +00:00
PinkDev1
c5857eefaf
Delete combined_words.txt 2022-01-29 06:04:02 +00:00
GitHub Action
7271aab5ab [Github Action] Updated combined_words.txt 2022-01-29 05:48:35 +00:00
PinkDev1
b2ee580771
This is a github action test 2022-01-29 05:47:26 +00:00
PinkDev1
4158fd7b53
Delete combined_words.txt 2022-01-29 05:47:05 +00:00
PinkDev1
8b78386e0f
This is a github action test 2022-01-29 05:43:30 +00:00
GitHub Action
2fcef417cc [Github Action] Updated combined_words.txt 2022-01-29 05:35:07 +00:00
PinkDev1
3ee621ca17
This is a github action test 2022-01-29 05:33:55 +00:00
PinkDev1
2d6d06d534
This is a github action test 2022-01-29 05:25:09 +00:00
PinkDev1
c3392900fe
This is a github action test 2022-01-29 05:21:46 +00:00
PinkDev1
5cfb4fc8a5
This is a github action test 2022-01-29 05:12:38 +00:00
gx1
b5ad433f4d Added italian subdomains 2022-01-25 01:25:49 -05:00
Dominique RIGHETTO
22908368be
Add "h2-console" word 2022-01-08 13:45:09 +01:00
cbk914
c618890458
Merge branch 'danielmiessler:master' into master 2021-12-21 21:43:48 +01:00
A.K
6757c71ffe
added 8443, tomcat ssl 2021-12-21 11:43:25 +01:00
Wyatt Dahlenburg
ecf264f825 Adding the springboot gateway actuator 2021-12-20 15:25:09 -06:00
Dominique RIGHETTO
9fab26bbb6
Add new sub domain names 2021-12-11 07:06:17 +01:00
Varun Kakumani
31a89fd18d
Added latest years to dictionary 2021-12-02 02:04:03 +05:30
g0tmi1k
23469eb06f
Merge pull request #633 from basubanakar/patch-1 
Update nginx.txt
 2021-11-24 10:00:07 +00:00
g0tmi1k
c129a01483
Merge pull request #640 from mxrch/patch-1 
adding "dismiss" to big.txt
 2021-11-24 09:59:49 +00:00
g0tmi1k
d1a222afff
Merge pull request #649 from PinkDev1/master 
Many more scopes, and cleanup of oauth-oidc-scopes.txt

- https://developers.google.com/identity/protocols/oauth2/scopes
- https://docs.github.com/en/developers/apps/building-oauth-apps/scopes-for-oauth-apps
- https://api.slack.com/legacy/oauth-scopes
- https://developers.dropbox.com/oauth-guide 
- https://openid.net/specs/openid-connect-core-1_0.html#ScopeClaims
 2021-11-24 09:57:54 +00:00
g0tmi1k
94f8cd291e
Merge pull request #659 from righettod/feature_enrich_jenkins 
Add new endpoints to the jenkins dict.

Source: https://www.jenkins.io/download/
 2021-11-24 09:54:24 +00:00
Dirk Wetter
6e13335da2
Avoid 301 
trailing slash is needed here
 2021-11-08 17:06:31 +01:00
Dirk Wetter
5439c5ee29
Create hashicorp-vault.txt 
see https://www.vaultproject.io/api/system/seal 

Had to close #665 as leading v1 was missing. This one works (confirmed myself)
 2021-11-08 16:17:03 +01:00
PinkDev1
61c5f5a018
Added a couple of scopes 
https://infosecwriteups.com/how-did-i-earned-6000-from-tokens-and-scopes-in-one-day-12f95c6bf8aa?source=rss----7b722bfd1b8d---4&gi=1e1df8e602a6
 2021-10-18 01:36:33 +00:00
Dominique RIGHETTO
5c5c2815f2
Cleanup 2021-10-05 18:41:44 +02:00
Dominique RIGHETTO
f009b45892
Add new endpoints 2021-10-05 18:40:57 +02:00