Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2026-02-25 00:46:10 +01:00
Code Issues Projects Releases Wiki Activity
SecLists/Fuzzing
History
Ignacio J. Perez Portal f9f84ba423 fix(docs): Improved formatting on the fuzzing README.md
2025-01-25 07:10:59 -03:00
..
403 Create 403.md 2023-12-27 13:38:21 -07:00
Amounts Hexadecimal ASCII and Hexadecimal Unicode 2023-04-18 13:44:57 +02:00
Databases Rename OracleSID.txt to OracleDB-SID.txt 2023-10-08 19:26:29 +02:00
LFI syntax:fix(wordlist): Fixed whitespace in "LFI-gracefulsecurity-windows.txt" 2024-11-23 09:40:25 +01:00
Polyglots Add best performing payloads from the XSS Polyglot Challenge 2018-11-01 07:37:16 +01:00
SQLi Update Generic-SQLi.txt 2024-06-10 22:35:13 +01:00
User-Agents Replace ' ' with ' ' (Empty Characters) 2021-08-28 21:05:13 +01:00
XSS chore(wordlist): Moved wordlist to its correct directory 2024-07-16 02:44:47 -03:00
0-999999-hashgen.py Update 0-999999-hashgen.py 2024-06-02 00:09:26 +04:00
1-4_all_letters_a-z.txt Create 1-4_all_letters_a-z.txt 2019-11-07 21:50:55 +05:30
3-digits-000-999.txt
4-digits-0000-9999.txt
5-digits-00000-99999.txt
6-digits-000000-999999.txt
alphanum-case-extra.txt
alphanum-case.txt
big-list-of-naughty-strings.txt more human injection; new LLM section 2023-05-29 19:47:45 +00:00
char.txt
command-injection-commix.txt
country-codes-lower-case.txt Split country codes 2024-04-05 00:20:57 +00:00
country-codes-upper-case.txt Split country codes 2024-04-05 00:20:57 +00:00
country-codes.txt Update country-codes.txt 2022-04-26 19:50:07 +02:00
doble-uri-hex.txt
email-top-100-domains.txt Update email-top-100-domains.txt 2020-11-03 13:06:10 +01:00
environment-identifiers.txt Add sandbox, sb and stage 2022-06-27 12:31:20 +12:00
extension-test.txt
extensions-Bo0oM.txt added devops extensions - .text, .qa. etc. 2022-03-03 11:23:21 -05:00
extensions-compressed.fuzz.txt Quick rename 2019-08-13 12:50:53 +01:00
extensions-most-common.fuzz.txt Added .phar 2024-04-23 15:46:20 +05:30
extensions-skipfish.fuzz.txt Quick rename 2019-08-13 12:50:53 +01:00
file-extensions-all-cases.txt Create file-extensions-all-cases.txt 2023-11-24 22:35:58 +08:00
file-extensions-lower-case.txt Create file-extensions-lower-case.txt 2023-11-24 22:37:11 +08:00
file-extensions-upper-case.txt Create file-extensions-upper-case.txt 2023-11-24 22:36:41 +08:00
file-extensions.txt Update file-extensions.txt 2023-11-24 22:35:12 +08:00
FormatString-Jhaddix.txt
fully-qualified-java-classes.txt added 'fully-qualified-java-classes' to fuzzing lists 2024-09-09 20:12:36 +00:00
fuzz-Bo0oM-friendly.txt Remove empty line 2023-12-01 18:43:33 +01:00
fuzz-Bo0oM.txt Update fuzz-Bo0oM.txt 2021-10-07 11:03:42 +02:00
FuzzingStrings-SkullSecurity.org.txt
HTML5sec-Injections-Jhaddix.txt
http-request-methods.txt Add HTTP versb TRACK and DEBUG 2023-10-17 12:39:22 +02:00
IBMMQSeries-channels.txt Fix formatting 2021-11-24 10:13:43 +00:00
JSON.Fuzzing.txt Replace ' ' with ' ' (Empty Characters) 2021-08-28 21:05:13 +01:00
LDAP-active-directory-attributes.txt add standard ldap attribute and classes lists 2021-01-20 15:38:59 +00:00
LDAP-active-directory-classes.txt add standard ldap attribute and classes lists 2021-01-20 15:38:59 +00:00
LDAP-openldap-attributes.txt add standard ldap attribute and classes lists 2021-01-20 15:38:59 +00:00
LDAP-openldap-classes.txt add standard ldap attribute and classes lists 2021-01-20 15:38:59 +00:00
LDAP.Fuzzing.txt Quick rename 2019-08-13 12:50:53 +01:00
login_bypass.txt Add files via upload 2024-10-21 10:23:13 +02:00
Metacharacters.fuzzdb.txt
numeric-fields-only.txt Quick move about 2018-03-21 17:47:29 +00:00
os-names-mutated.txt Create os-names-mutated.txt 2023-11-24 02:06:49 +08:00
os-names.txt Update os-names.txt 2023-11-24 02:04:48 +08:00
php-magic-methods.txt Add PHP magic methods list 2023-02-21 21:01:07 +01:00
README.md fix(docs): Improved formatting on the fuzzing README.md 2025-01-25 07:10:59 -03:00
special-chars + urlencoded.txt Add files via upload 2024-10-21 10:28:09 +02:00
special-chars.txt Add "-" and remove duplicate "_" entry 2021-07-13 14:42:14 +01:00
SSI-Injection-Jhaddix.txt strip trailing whitespace 2020-05-27 14:26:51 +01:00
template-engines-expression.txt Add an expression using expression inlining for Thymeleaf 2020-09-13 11:04:15 +02:00
template-engines-special-vars.txt Update 2020-11-05 16:41:54 +01:00
Unicode.txt
UnixAttacks.fuzzdb.txt strip trailing whitespace 2020-05-27 14:26:51 +01:00
URI-hex.txt
URI-XSS.fuzzdb.txt
Windows-Attacks.fuzzdb.txt strip trailing whitespace 2020-05-27 14:26:51 +01:00
XML-FUZZ.txt Fix Fuzzing Types (Fixes #339) 2019-10-05 00:35:43 +09:30
XXE-Fuzzing.txt Replace ' ' with ' ' (Empty Characters) 2021-08-28 21:05:13 +01:00

README.md

0-999999-hashgen.py

This tool generates a list of hashes for all numbers from 0 to 999999, and stores them in 0_999999_hashes.txt. The resulting file is aproximately 600MB in size.

The hashes it generates are:

  • MD5
  • SHA-1
  • SHA-224
  • SHA-256
  • SHA-384
  • SHA-512
  • SHA-3-256
  • BLAKE2b

URI-XSS.fuzzdb.txt

Use for: Fuzzing for XSS vulnerabilities in URIs Source: JBroFuzz

fully-qualified-java-classes.txt

Use for: Fuzzing URL parameters in web applications to test for deserialisation and type confusion vulnerabilities.