You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
GitHub Action 4eb28683ab [Github Action] Updated combined_words.txt 2 months ago
.bin Add script to build a list of of environment identifiers based on sub domain names. 7 months ago
.github/workflows Prepared github action for merging 5 months ago
Discovery [Github Action] Updated combined_words.txt 2 months ago
Fuzzing Merge pull request #708 from D3vil0per/patch-2 2 months ago
IOCs Fix #259 - Recover from bad merge 4 years ago
Miscellaneous Merge pull request #656 from A1vinSmith/master 5 months ago
Passwords Add Baicells default creds from CVE-2022-24693 3 months ago
Pattern-Matching Update Angular dangerous functions 2 years ago
Payloads Add more zip-bombs 3 years ago
Usernames Add: Top common Indian forenames 7 months ago
Web-Shells Merge pull request #709 from azams/master 2 months ago
.gitattributes added git attributes to keep line ends standardised 2 years ago
.gitignore Update Angular dangerous functions 2 years ago Update 4 years ago Update for 2022.2 2 months ago
LICENSE Create LICENSE 4 years ago Formatting and links 7 months ago


About SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by Daniel Miessler, Jason Haddix, and g0tmi1k.



wget -c -O \
  && unzip \
  && rm -f

Git (Small)

git clone --depth 1 \

Git (Complete)

git clone

Kali Linux (Tool Page)

apt -y install seclists





Similar Projects


This project is licensed under the MIT license.

MIT License

NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in SecLists that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.