Backup_Repos/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists synced 2026-01-11 10:47:34 +01:00
Code Issues Projects Releases Wiki Activity
No description
2041 commits 2 branches 30 tags 2.5 GiB
PHP 52.7%
Python 15.5%
Classic ASP 11.6%
Shell 7.3%
Perl 3.8%
Other 9.1%
Find a file
g0tmi1k e9337bebcf
Merge pull request #999 from ItsIgnacioPortal/RouterCredentials 
feat(passwords): Added router default users and passwords

Source: https://portforward.com/

```
import os
from bs4 import BeautifulSoup

invalidValues = ["none", "N/A", "blank", "user created", "password changes when reset", "none; created during initial setup", "PrintedOnRouterLabel", "provided by ISP"]
invalidKeywords = ["none", "leave blank", "n/a", "blank", "found by", "found on", "printed on", "configured during", "create", "last", "located", "on ", "sticker on", "refer to"]

def extract_credentials(file_path):
	with open(file_path, 'r') as file:
		content = file.read()
		soup = BeautifulSoup(content, 'html.parser')
		table = soup.find('table')
		if table:
			model = table.find('th').text.strip().lower().replace('model', '').strip().replace(' ', '-').replace('/', '-')
			usernames = set()
			passwords = set()
			for row in table.find_all('tr')[1:]:
				cols = row.find_all('td')
				username = cols[1].text.strip()
				password = cols[2].text.strip()

				if username not in invalidValues:
					addUsername = True
					tempusername = username.lower()

					for keyword in invalidKeywords:
						if tempusername.startswith(keyword):
							addUsername=False
							break

					if addUsername:
						usernames.add(username)

				if password not in invalidValues:
					addPassword = True
					temppassword = password.lower()
					for keyword in invalidKeywords:
						if temppassword.startswith(keyword):
							addPassword=False
							break

					if addPassword:
						passwords.add(password)

			return model, sorted(usernames), sorted(passwords)
		else:
			return None, None, None

def save_credentials(model, usernames, passwords, output_dir):
	if model and usernames and passwords:
		user_file_path = os.path.join(output_dir, f'{model}_default-users.txt')
		pass_file_path = os.path.join(output_dir, f'{model}_default-passwords.txt')
		with open(user_file_path, 'w') as user_file:
			user_file.write('\n'.join(usernames))
		with open(pass_file_path, 'w') as pass_file:
			pass_file.write('\n'.join(passwords))

def process_files(input_dir, output_dir):
	for file_name in os.listdir(input_dir):
		print(f'Processing file {file_name}')
		file_path = os.path.join(input_dir, file_name)
		model, usernames, passwords = extract_credentials(file_path)
		save_credentials(model, usernames, passwords, output_dir)

# Input directory containing the text files
input_dir = "C:\\Users\\User\\Desktop\\out\\portforward.com"
# Output directory where the output files will be saved
output_dir = "C:\\Users\\User\\Github\\SecLists\\Passwords\\Default-Credentials\\Routers"
process_files(input_dir, output_dir)
```
2024-04-05 15:26:08 +01:00
.bin Reimport files 2024-02-17 03:04:59 +08:00
.github Changed templates 2024-04-05 10:12:47 +00:00
Discovery Normalised line endings 2024-04-05 10:26:17 +00:00
Fuzzing Merge pull request #968 from molangning/patch-xss-wordlists 2024-02-16 15:48:15 +00:00
IOCs Fix #259 - Recover from bad merge 2019-01-07 15:40:56 +00:00
Miscellaneous Merge pull request #1003 from molangning/patch-normalise-line-endings 2024-04-05 15:22:24 +01:00
Passwords Merge pull request #999 from ItsIgnacioPortal/RouterCredentials 2024-04-05 15:26:08 +01:00
Pattern-Matching Imported and cleaned php magic hashes 2024-02-16 05:50:44 +00:00
Payloads Zipped the max-length folder 2022-06-23 19:50:05 -03:00
Usernames add more entries 2023-06-16 03:10:52 +02:00
Web-Shells updated to laudanum v1.0 2023-05-18 17:39:10 +05:30
.gitattributes added git attributes to keep line ends standardised 2020-05-27 14:16:24 +01:00
.gitignore ignore .working_space 2023-11-26 02:45:41 +08:00
CONTRIBUTING.md Added more specifications 2024-04-05 10:19:41 +00:00
CONTRIBUTORS.md Prep for 2024.1 2024-02-16 15:55:38 +00:00
LICENSE Create LICENSE 2018-06-13 12:04:57 +01:00
README.md [Github Action] Automated readme update. 2024-04-05 14:21:59 +00:00
SecLists.png Header Image 2023-03-10 10:55:08 -05:00

README.md

seclists.png

About SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by Daniel Miessler, Jason Haddix, and g0tmi1k.

Repository details

Size of a complete clone of SecLists is currently at 1.2 GB

Cloning this repository should take 4-5 minutes at 5MB/s speeds.

Install

Zip

wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip \
  && unzip SecList.zip \
  && rm -f SecList.zip

Git (Small)

git clone --depth 1 \
  https://github.com/danielmiessler/SecLists.git

Git (Complete)

git clone https://github.com/danielmiessler/SecLists.git

Kali Linux (Tool Page)

apt -y install seclists

BlackArch (Tool Page)

sudo pacman -S seclists

Attribution

See CONTRIBUTORS.md

Contributing

See CONTRIBUTING.md

Similar Projects

Licensing

This project is licensed under the MIT license.

MIT License

NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in SecLists that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.