You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
g0tmi1k b0cbe86a20
Merge pull request #306 from g0tmi1k/phpinfo
2 weeks ago
Discovery Close #217 - Add api_wordlist 1 month ago
Fuzzing Add XSS without parentheses and semi-colons 1 month ago
IOCs Fix #259 - Recover from bad merge 5 months ago
Miscellaneous find . -name '*_*' -exec rename 's/_/-/g' "{}" \; 1 month ago
Passwords Add MSSQL from guardicore: labs_campaigns-Nansh0u 3 weeks ago
Pattern-Matching Close #291 - Fix encoding issues 1 month ago
Payloads Add a few more filenames 2 weeks ago
Usernames Add MSSQL from guardicore: labs_campaigns-Nansh0u 3 weeks ago
Web-Shells fix file 3 months ago
.gitignore Close #291 - Fix encoding issues 1 month ago
CONTRIBUTING.md Update CONTRIBUTING.md 1 year ago
CONTRIBUTORS.md Give credit where its due! 1 month ago
LICENSE Create LICENSE 1 year ago
README.md Updated name of project in Readme. 4 months ago

README.md

seclists.png

About SecLists

SecLists is the security tester’s companion. It’s a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by Daniel Miessler, Jason Haddix, and g0tmi1k.


Install

Zip

wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip \
  && unzip SecList.zip \
  && rm -f SecList.zip

Git (Small)

git clone --depth 1 https://github.com/danielmiessler/SecLists.git

Git (Complete)

git clone git@github.com:danielmiessler/SecLists.git

Kali Linux (Tool Page)

apt -y install seclists

Attribution

See CONTRIBUTORS.md


Contributing

See CONTRIBUTING.md


Similar Projects


Licensing

This project is licensed under the MIT license.

MIT License

NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in Seclists or FuzzDB that can harm your computer as-is, however it’s not recommended to store these files on a server or other important system due to the risk of local file include attacks.