Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2026-01-07 00:27:27 +01:00
Code Issues Projects Releases Wiki Activity
1382 commits 2 branches 30 tags 2.5 GiB
Commit graph

1382 commits

This branch
This branch
All branches
Author SHA1 Message Date
g0tmi1k
ce9f9588b7
Merge pull request #776 from ItsIgnacioPortal/fVersioning-systems 
raft-small-words.txt: Added more source code versioning systems

Source: https://nitter.kavin.rocks/intigriti/status/1533050946212839424
 2022-08-02 06:33:45 +01:00
g0tmi1k
348b6f3f88
Merge pull request #778 from ItsIgnacioPortal/i768 
Fixes #768: Created combined_subdomains.txt and appended "preprod-payroll" to it.
 2022-08-02 06:32:57 +01:00
g0tmi1k
ef158b0232
Merge pull request #780 from ItsIgnacioPortal/i538 
Fixes #538: Add scraped JWT secrets

Source: https://github.com/wallarm/jwt-secrets/blob/master/jwt.secrets.list
 2022-08-02 06:29:35 +01:00
g0tmi1k
ddd078f4ab
Merge pull request #781 from J-GainSec/patch-1 
Create top-apk-params.txt

Source: 

https://gist.github.com/nullenc0de/be4d0ac216ee4fecab5493555089b28d

https://twitter.com/nullenc0de/status/1425973675715612672

https://gist.github.com/nullenc0de/e9d1f2a8a0a38c9bfcb5bdb9fc7191ea
 2022-08-02 06:28:30 +01:00
g0tmi1k
b949a69cca
Merge pull request #782 from J-GainSec/patch-2 
Create sharepoint.txt

Source: https://github.com/GainSec/TreeHouse-Wordlists/blob/master/Microsoft%20SharePoint.txt
 2022-08-02 06:26:49 +01:00
g0tmi1k
baa6e8599b
Merge pull request #783 from J-GainSec/patch-3 
Create iis-systemweb.txt

Source: https://github.com/GainSec/TreeHouse-Wordlists/blob/master/IIS_Systemweb_fuzz-WL.txt
 2022-08-02 06:25:56 +01:00
g0tmi1k
7fb9827bfc
Merge pull request #784 from J-GainSec/patch-4 
Create forefront-identity-management

Source: https://raw.githubusercontent.com/GainSec/TreeHouse-Wordlists/master/Microsoft-Forefront-Identity-Management-2010.txt
 2022-08-02 06:25:23 +01:00
g0tmi1k
1ebd15c9e5
Merge pull request #786 from J-GainSec/patch-5 
Create uri-from-top-55-most-popular-apps.txt

Source:

https://github.com/danielmiessler/SecLists/pull/781#issuecomment-1168353194

https://twitter.com/nullenc0de/status/1425973675715612672

https://gist.github.com/nullenc0de/e9d1f2a8a0a38c9bfcb5bdb9fc7191ea
 2022-08-02 06:22:46 +01:00
g0tmi1k
2c424971ce
Merge pull request #795 from righettod/feature_add_sshkeyfiles 
Add additional ssh key file names

Source: `man ssh`
 2022-08-02 06:20:26 +01:00
Dominique RIGHETTO
20cb80229b
Add ssh key file name 2022-08-02 06:19:51 +02:00
g0tmi1k
edc55381b0
Merge pull request #790 from ItsIgnacioPortal/i770 
Fixes #770: Zipped files with problematic filenames
 2022-08-02 00:12:52 +01:00
GitHub Action
51bad1c320 [Github Action] Updated combined_words.txt 2022-08-01 23:11:39 +00:00
g0tmi1k
00c55dbad1
Merge pull request #792 from WKobes/add-activation 
Adds `activation' to common.txt
 2022-08-02 00:10:19 +01:00
g0tmi1k
f11c64cfc4
Merge pull request #794 from TalebQasem/patch-1 
Update LFI-gracefulsecurity-linux.txt

https://raw.githubusercontent.com/DragonJAR/Security-Wordlist/main/LFI-WordList-Linux
 2022-08-02 00:09:42 +01:00
Taleb Qasem
294ee04ad3
Update LFI-gracefulsecurity-linux.txt 
Removed 3 duplicates (/etc/passwd, /etc/mod, and /etc/php4/apache2/php.ini). Then added word list from (https://raw.githubusercontent.com/DragonJAR/Security-Wordlist/main/LFI-WordList-Linux).
 2022-07-27 21:16:50 +06:00
Wouter Kobes
f752b04a32 Adds activation to common.txt 2022-07-23 16:42:03 +02:00
J-GainSec
cda67688e9
Update uri-from-top-55-most-popular-apps.txt 
Removed a few useless entries
 2022-06-29 11:10:56 +02:00
J-GainSec
76fbcb2289
Update sharepoint-ennumeration.txt 
Removed any entries with // or /// and reran uniq
 2022-06-29 11:00:16 +02:00
J-GainSec
cccdb40cef
Update sharepoint-ennumeration.txt 
Removed double slashes
 2022-06-28 21:34:27 +02:00
J-GainSec
00cb49844d
Update and rename sharepoint.txt to sharepoint-ennumeration.txt 
Changed name
 2022-06-28 21:32:55 +02:00
J-GainSec
624b836211
Update uri-from-top-55-most-popular-apps.txt 
Removed leading slashes
 2022-06-28 21:31:50 +02:00
J-GainSec
77e7ea50cf
Update uri-from-top-55-most-popular-apps.txt 
Removed leading slashes.
 2022-06-28 21:30:54 +02:00
J-GainSec
0a09279658
Rename forefront-identity-management to forefront-identity-management.txt 2022-06-28 15:37:41 +02:00
J-GainSec
944a8deaf0
Create uri-from-top-55-most-popular-apps.txt 
Removed trailing slashes
 2022-06-28 15:17:38 +02:00
J-GainSec
8cf0fbdc71
Update and rename top-apk-params.txt to url-params_from-top-55-most-popular-apps.txt 
Updated name
 2022-06-28 15:15:08 +02:00
J-GainSec
06b0cddb2a
Create forefront-identity-management 
Sourced from https://raw.githubusercontent.com/GainSec/TreeHouse-Wordlists/master/Microsoft-Forefront-Identity-Management-2010.txt

Wordlist for Microsoft Forefront Identity Management 2010
 2022-06-27 19:25:35 +02:00
J-GainSec
6a191793da
Create iis-systemweb.txt 
Sourced from https://github.com/GainSec/TreeHouse-Wordlists/blob/master/IIS_Systemweb_fuzz-WL.txt

A IIS /system_web/ wordlist.
 2022-06-27 19:20:19 +02:00
J-GainSec
051d84c9e7
Create sharepoint.txt 
Sourced from https://github.com/GainSec/TreeHouse-Wordlists/blob/master/Microsoft%20SharePoint.txt

A Microsoft Sharepoint wordlist
 2022-06-27 19:18:05 +02:00
J-GainSec
9a6b80ed19
Create top-apk-params.txt 
Parameters from the Top 55 Android applications.
 2022-06-27 19:06:01 +02:00
PinkDev1
8b3ccbedaa Fixed #538: Added credits to the relevant README 2022-06-24 00:32:45 -03:00
PinkDev1
74dbbb7f95 Added scraped-JWT-secrets.txt 2022-06-24 00:31:22 -03:00
PinkDev1
1cbee5afc8 Fixed #768: Created combined_subdomains.txt and appended "preprod-payroll" to it 2022-06-23 23:03:53 -03:00
PinkDev1
a37dbe1d3d Zipped the max-length folder 2022-06-23 19:50:05 -03:00
PinkDev1
9be91ecd4e Zipped PHPInfo files 2022-06-23 19:44:08 -03:00
PinkDev1
ba70a134d9 raft-small-words.txt: Added more source code versioning systems 
Source: https://nitter.kavin.rocks/intigriti/status/1533050946212839424
 2022-06-23 19:36:36 -03:00
PinkDev1
c8bc8eb242 Fixed #770: Zipped files with problematic filenames 2022-06-23 19:32:39 -03:00
GitHub Action
4eb28683ab [Github Action] Updated combined_words.txt 2022-04-26 16:51:13 +00:00
g0tmi1k
f5fa9786d1
Merge pull request #717 from g0tmi1k/release 
Update for 2022.2
 2022-04-26 17:49:00 +01:00
g0t mi1k
515d85b83c Update for 2022.2 2022-04-26 17:46:18 +01:00
GitHub Action
939734974b [Github Action] Updated combined_directories.txt 2022-04-26 16:33:54 +00:00
g0tmi1k
9bf9f2ea2a
Merge pull request #696 from ItsIgnacioPortal/master 
Create universally useful combined web discovery wordlists which auto-update
 2022-04-26 17:32:16 +01:00
g0tmi1k
0db72b1dfc
Merge pull request #707 from zevlag/patch-1 
Add Baicells default creds from CVE-2022-24693

Source: https://github.com/advisories/GHSA-7vmv-mpx6-985j
 2022-04-26 17:26:41 +01:00
g0tmi1k
635fadadf8
Merge pull request #708 from D3vil0per/patch-2 
Added methods from IANA source

Source: http://www.iana.org/assignments/http-methods/http-methods.xhtml#methods
 2022-04-26 17:26:16 +01:00
g0tmi1k
839b262087
Merge pull request #709 from azams/master 
Add another obfuscated php shell and check the disable_functions.
 2022-04-26 17:25:56 +01:00
g0tmi1k
2e82613b9b
Merge pull request #712 from righettod/master 
Sync with param-miner master repository.

1. Take content of the file **params** from the [PortSwigger/param-miner](https://github.com/PortSwigger/param-miner/blob/master/resources/params) repository (master branch).
2. Take the content of the file **burp-parameter-names.txt** from the [SecLists](https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/burp-parameter-names.txt) repository (master branch).
3. Unify the both content removing the duplicates via `cat params  burp-parameter-names.txt | sort -u > burp-parameter-names.txt`.
4. Add the parameter named **api-version** found into this [blog post](https://medium.com/xm-cyber/10-ways-of-gaining-control-over-azure-function-apps-7e7b84367ce6) about attacking Azure function apps.
 2022-04-26 17:25:07 +01:00
g0tmi1k
c12ada51d2
Merge pull request #714 from indigo-sadland/master 
Unicode encoded LFI payload
 2022-04-26 17:22:03 +01:00
g0tmi1k
115aace394
Merge pull request #715 from camercu/patch-1 
fix logic bug setting port number
 2022-04-26 17:21:21 +01:00
g0tmi1k
56a9cf192b
Merge pull request #716 from stoben/master 
Add Hangfire console

Source: https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-26 17:20:45 +01:00
Ben M Stokland
a7d0fc30a1
Add Hangfire console 
https://docs.hangfire.io/en/latest/configuration/using-dashboard.html
https://www.shodan.io/search?query=http.title%3A%22hangfire%22
 2022-04-20 21:32:18 +02:00
Cameron Unterberger
60ac224950
fix logic bug setting port number 2022-04-18 20:54:43 -04:00