firebadnofire
/
SecLists
mirror of https://github.com/danielmiessler/SecLists.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,596 Commits 1 Branch 26 Tags 1.9 GiB
Commit Graph

538 Commits

Author SHA1 Message Date
GitHub Action 7fa58a2a26 [Github Action] Updated combined_words.txt 2023-03-09 12:37:53 +00:00
Dominique RIGHETTO 7732856ab9
Update common.txt 2023-03-09 13:34:32 +01:00
g0tmi1k 4a697dfe49
Merge pull request #827 from ItsIgnacioPortal/dsstore 
Added dsstorewordlist.txt
 2023-03-09 12:19:38 +00:00
g0tmi1k 0268599a8f
Merge pull request #833 from mhmdiaa/trickest-wordlists 
Add Trickest wordlists

Source: https://github.com/trickest/inventory
 2023-03-09 12:16:58 +00:00
g0tmi1k 3256414e81
Merge pull request #834 from kazet/fresher-backups-Discovery/Web-Content/quickhits.txt 
Fresher backups in Discovery/Web-Content/quickhits.txt
 2023-03-09 12:16:14 +00:00
g0tmi1k 92b66ac2f1
Merge pull request #836 from veritysr/master 
Adding wordlist for DotNetNuke resources

Source: https://raw.githubusercontent.com/dnnsoftware/Dnn.Platform/2b530d234439f4e9cb1e0719d76c2bacd475c2d8/DNN%20Platform/Website/DotNetNuke.Website.csproj
 2023-03-09 12:15:00 +00:00
g0tmi1k 96fdca5ff7
Merge pull request #837 from righettod/add-server-js-extension 
Add React Server Components  file extension

Source: 
- https://blog.logrocket.com/what-you-need-to-know-about-react-server-components/
- https://blog.logrocket.com/react-server-components-nextjs-12/
 2023-03-09 12:14:35 +00:00
g0tmi1k 916ba65a9f
Merge pull request #840 from its0x08/patch-1 
Add new entries and sort list

Source: https://github.com/ColdFusionX/CVE-2021-26086
 2023-03-09 12:13:54 +00:00
g0tmi1k 66604e14fb
Merge pull request #846 from blaiddx64/master 
add **swagger-ui/ path (springfox)

Source: https://github.com/springfox/springfox/issues/3362#issuecomment-719617233
 2023-03-09 12:07:56 +00:00
g0tmi1k 74e45d60cc
Merge pull request #849 from n0kovo/master 
Add n0kovo_subdomains.txt

Source: https://n0kovo.github.io/posts/subdomain-enumeration-creating-a-highly-efficient-wordlist-by-scanning-the-entire-internet/
 2023-03-09 12:05:43 +00:00
Adam Katora 3f7ca8a35d
Add .hta to web-extensions.txt 2023-02-25 21:09:55 -05:00
n0kovo 0c55bc0dc8 Add n0kovo_subdomains.txt 2023-02-18 02:31:03 +01:00
blaidd f06a8c5061
remove old invalid entries of swagger-ui 2023-02-11 03:55:38 -03:00
Blaidd 74da3d7c8c
add **swagger-ui/ path 2023-02-09 10:57:16 -03:00
Mohammed Diaa ca01196bc3 Use more descriptive names for Trickest wordlists 2023-01-16 13:58:06 +02:00
0x08 2b4afcc59e
chore: Add new entries 2023-01-05 22:20:49 +03:00
Dominique RIGHETTO 5501ad52c3 Add server.js extension 2022-12-22 15:09:37 +00:00
Dominique RIGHETTO aed62548a5 Reset to remote master state 2022-12-22 15:05:08 +00:00
Dominique RIGHETTO ab0fba3838 Add .server.js extension 2022-12-21 19:15:32 +00:00
sean 07e50c34d3 Adding wordlist for DotNetNuke resources 2022-12-20 14:18:21 -06:00
GitHub Action 8d45daf9fe [Github Action] Updated combined_words.txt 2022-11-27 17:44:18 +00:00
Dominique RIGHETTO 506027e8a9
Enrich content 2022-11-27 18:43:11 +01:00
Krzysztof Zając 0665d0fe72 Fresher backups in Discovery/Web-Content/quickhits.txt 2022-11-25 13:32:56 +01:00
Mohammed Diaa 28f570631a Add Trickest-Technologies wordlists 2022-11-23 13:10:46 +02:00
Mohammed Diaa d806325fe8 Add Trickest-Robots wordlists 2022-11-23 13:09:58 +02:00
Mohammed Diaa 025f85c7df Add trickest-inventory-subdomains.txt 2022-11-23 13:08:59 +02:00
Ignacio J. Perez Portal c859bc7d3d
Merge branch 'master' into dsstore 2022-11-23 04:21:05 +00:00
g0tmi1k 7575cbdf93
Merge pull request #828 from CountablyInfinite/master 
Added content discovery for Liferay DXP default portlets
 2022-11-22 12:24:31 +00:00
g0tmi1k 88552f1608
Merge pull request #804 from 0xbuz3R/patch-1 
Update js.txt
 2022-11-22 12:16:37 +00:00
g0tmi1k ca9d413d7e
Merge pull request #813 from abhishekmorla/master 
added new backupfiles in wordpress fuzz list

Source: https://www.linkedin.com/feed/update/urn:li:activity:6979486318774923264/
 2022-11-22 12:14:19 +00:00
g0tmi1k 8d52809a0a
Merge pull request #812 from tacticthreat/patch-1 
Create hashicorp-consul-api.txt

Source: HashiCorp documentation
 2022-11-22 12:13:03 +00:00
g0tmi1k e870061b86
Merge pull request #811 from tacticthreat/patch-2 
Create salesforce-aura-objects.txt

Source: Salesforces' documentation
 2022-11-22 12:12:18 +00:00
g0tmi1k 4296f91216
Merge pull request #810 from gypsydiver/wp-plugins-update 
add site-editor and mail-masta to wp-plugins.fuzz.txt
 2022-11-22 12:11:39 +00:00
g0tmi1k 517c44b24e
Merge pull request #808 from InTruder-Sec/master 
Added more API directories for web application  enumeration
 2022-11-22 12:10:51 +00:00
g0tmi1k 2ce0271683
Merge pull request #807 from righettod/feature_update_springboot 
[spring-boot.txt] Add new endpoints

- https://docs.spring.io/spring-boot/docs/current/reference/html/application-properties.html#application-properties.actuator.management.server.base-path
- https://docs.spring.io/spring-boot/docs/current/reference/html/actuator.html#actuator.endpoints
 2022-11-22 12:09:25 +00:00
g0tmi1k 76d436287d
Merge pull request #805 from its0x08/patch-1 
chore: Add WEB-INF list

Source:
- https://gist.github.com/harisec/519dc6b45c6b594908c37d9ac19edbc3
- https://github.com/projectdiscovery/nuclei-templates/blob/master/vulnerabilities/generic/generic-j2ee-lfi.yaml
- https://github.com/ilmila/J2EEScan/blob/master/src/main/java/burp/j2ee/issues/impl/LFIModule.java
 2022-11-22 12:08:32 +00:00
g0tmi1k ad20e71dbc
Merge pull request #801 from righettod/feature_adobe_aem 
[AdobeCQ-AEM.txt] Cleanup and enrichment.

Source: 

- https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/getting-started/security-checklist.html#restrict-access
- https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/configuring/dispatcher-configuration.html?lang=en#testing-dispatcher-security
 2022-11-22 12:05:49 +00:00
g0tmi1k 2752f1bf21
Merge pull request #746 from cyberpathogen2018/patch-1 
Fixed typo on line 26

Source: https://www.acunetix.com/blog/articles/a-fresh-look-on-reverse-proxy-related-attacks/
 2022-11-22 12:00:42 +00:00
g0tmi1k 8d08bb324d
Merge pull request #798 from rodnt/patch-1 
Spring Boot RCE involving JMX enabled

Source: https://github.com/pyn3rd/Spring-Boot-Vulnerability#0x05-spring-boot-rce-involving-jmx-enabled
 2022-11-22 11:58:45 +00:00
CountablyInfinite 59ca9892ba added content discovery for liferay dxp portlets 2022-11-17 20:19:41 +01:00
PinkDev1 6362c3e275 Added dsstorewordlist.txt 2022-11-08 19:15:13 -03:00
RR aacc4cd2c1
Removed duplicate entries 
applied unique to the wordlist removing any duplicates from list
 2022-10-20 11:31:56 -04:00
0x08 a218cf1a62
Merge branch 'danielmiessler:master' into patch-1 2022-10-14 15:04:02 +03:00
RR 69388e96f9
Update hashicorp-consul-api.txt 
removed two comment lines
 2022-10-03 14:54:49 -04:00
RR 5c356da2f6
Update salesforce-aura-objects.txt 
removed comment lines
 2022-10-03 13:24:28 -04:00
abhishekmorla 6f8c6e9226 added new backupfiles in wordpress fuzz list 2022-09-25 23:08:54 +05:30
RR 4bc885b5dd
Create salesforce-aura-objects.txt 2022-09-15 14:44:34 -04:00
RR 960a60fa44
Create hashicorp-consul-api.txt 2022-09-15 14:41:28 -04:00
Fernando Mendoza 62a7e2bf18 add site-editor and mail-masta 2022-09-15 04:06:39 +02:00
0x08 9aa9cbe8d8
chore: Add entry to the README.md 2022-09-11 20:29:45 +03:00