danielmiessler/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2024-10-05 14:47:29 +03:00
Code Issues Projects Releases Wiki Activity
3,749 Commits 1 Branch 26 Tags 2.1 GiB
master
Commit Graph

3749 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mohit Narayan Rajput
99d3e2ab22
Update golang.txt 2020-07-19 01:34:21 -04:00
cbk914
fd4968f43b
Merge pull request #3 from danielmiessler/master 
Update
 2020-07-19 05:22:50 +02:00
Dominique RIGHETTO
00f10f8513
Add character that can break a MongoDB query when JS expression is used 2020-07-18 18:00:24 +02:00
Maximilian Kleinke
e3ae394144 renamed files in Passwords/Default-Credentials for better parsing 2020-07-18 13:59:44 +02:00
g0tmi1k
b883fc123a
Merge pull request #467 from GovindPalakkal/patch-2 
Update swagger.txt
 2020-07-17 22:05:28 +01:00
g0tmi1k
62786ce702
Update CONTRIBUTORS.md 2020-07-17 22:01:21 +01:00
g0tmi1k
ad309eabee
Merge pull request #468 from govolution/patch-6 
Update telnet-betterdefaultpasslist.txt

Source: https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/
 2020-07-17 21:56:37 +01:00
cbk914
8dc1c82fb9
Merge pull request #2 from danielmiessler/master 
Update
 2020-07-12 22:30:37 +02:00
govolution
ff84e4dafa
Update telnet-betterdefaultpasslist.txt 
source for new passwords: https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/
 2020-07-11 17:51:50 +02:00
D3lT4
c5ce1780eb
Update swagger.txt 2020-07-08 23:37:59 +05:30
bugbounty69
0f3c1db17c
Added all HTML Attributes list 2020-07-08 00:25:11 +00:00
WhiteDot
c8cfb4666b
Update raft-large-files.txt 
added some file names
 2020-07-06 22:54:56 +05:30
Dominic
3ae69babfa
Add new Swagger UI path 
Just stumbled upon that URL, search `inurl:swagger/ui/index` for examples.
 2020-06-30 08:53:21 -04:00
g0tmi1k
dd5960e18e
Merge pull request #459 from clem9669/patch-3 
Minor change
 2020-06-18 15:34:59 +01:00
g0tmi1k
456a3b0fe8
Merge pull request #460 from clem9669/patch-4 
PR about the issue: #438
 2020-06-18 15:20:05 +01:00
clem9669
7da5c78bf7
PR about the issue: #438 
Typo
https://github.com/danielmiessler/SecLists/issues/438
 2020-06-18 14:18:55 +00:00
clem9669
c4002baa24
Minor change 
Added 1 line for good practice
 2020-06-18 14:15:16 +00:00
g0tmi1k
227e072758
Merge pull request #458 from PinkDraconian/patch-2 
Added scientific notation entries
 2020-06-16 13:18:56 +01:00
PinkDraconian
cf1ca8ec62
Added scientific notation entries 2020-06-16 12:36:29 +02:00
g0tmi1k
4626422418
Merge pull request #457 from PinkDraconian/patch-1 
Added true and false to the fuzzing list
 2020-06-16 11:24:19 +01:00
PinkDraconian
8679c2d6fe
Added true and false to the fuzzing list 
Changing json field to true or false could have interesting results on an endpoint when fuzzing.
 2020-06-16 12:21:04 +02:00
g0tmi1k
958dd563e0
Merge pull request #455 from Techbrunch/patch-1 
Update swagger.txt
 2020-06-12 11:21:37 +01:00
Techbrunch
baf37cc800
Update swagger.txt 
Update swagger.txt
 2020-06-12 11:23:06 +02:00
g0tmi1k
d76b8f6691
Merge pull request #452 from noraj/patch-1 
Create LFI-gracefulsecurity-windows.txt

Source: https://gracefulsecurity.com/path-traversal-cheat-sheet-windows/
 2020-06-12 09:57:44 +01:00
g0tmi1k
b2865e0492
Merge pull request #453 from noraj/patch-2 
Create LFI-gracefulsecurity-linux.txt

Source: https://gracefulsecurity.com/path-traversal-cheat-sheet-linux/
 2020-06-12 09:57:09 +01:00
g0tmi1k
5ecb8e85b2
Merge pull request #454 from sheimo/patch-1 
Create sqli.auth.bypass.txt

Source: https://pentestlab.blog/2012/12/24/sql-injection-authentication-bypass-cheat-sheet/
Source: http://www.lifeoverpentest.com/2018/03/sql-injection-login-bypass-cheat-sheet.html
 2020-06-12 09:56:17 +01:00
sheimo
6757058b8c
Create sqli.auth.bypass.txt 
This is a thorough SQL injection authentication bypass list. Each source below was combined to a text file and sorted.

Source: https://pentestlab.blog/2012/12/24/sql-injection-authentication-bypass-cheat-sheet/
Source: http://www.lifeoverpentest.com/2018/03/sql-injection-login-bypass-cheat-sheet.html
 2020-06-11 23:24:34 -05:00
Alexandre ZANNI
7dd955a544
Create LFI-gracefulsecurity-linux.txt 2020-06-11 16:49:45 +02:00
Alexandre ZANNI
6945f3e779
Create LFI-gracefulsecurity-windows.txt 2020-06-11 16:48:39 +02:00
g0tmi1k
1a9c3d47ed
Merge pull request #446 from its0x08/patch-1 
TYPO fixed: some lines start with space.
 2020-06-09 17:09:55 +01:00
g0tmi1k
6dff88b8b0
Merge pull request #447 from its0x08/patch-2 
TYPO fixed: some lines start with space.
 2020-06-09 17:09:20 +01:00
g0tmi1k
534e8cd726
Merge pull request #451 from lc/patch-1 
Update CONTRIBUTORS.md
 2020-06-09 17:08:57 +01:00
Corben Leo
32f83cb081
Update CONTRIBUTORS.md 2020-06-09 11:07:28 -05:00
0x08
49d625bbcc
TYPO fixed: some lines start with space. 2020-06-06 01:20:25 +03:00
0x08
7db405b01c
TYPO fixed: some lines start with space. 2020-06-06 01:13:59 +03:00
g0tmi1k
0a39d3dcb4
Merge pull request #417 from muhammedck113/patch-1 
Update 10-million-password-list-top-100.txt
 2020-06-05 16:30:30 +01:00
g0tmi1k
6beba93eac
Merge pull request #427 from Failsafe-0verflowme/patch-1 
Update common.txt
 2020-06-05 16:30:13 +01:00
g0tmi1k
9aa4f93db1
Merge pull request #433 from MomIsBestFriend/Fix-425 
Fixed typo in Discovery/Variables/secret-keywords.txt
 2020-06-05 16:29:54 +01:00
g0tmi1k
245984882a
Merge pull request #442 from kazkansouh/standardise-line-end 
Standardise line endings
 2020-05-28 11:11:35 +01:00
g0tmi1k
8d9520e039
Merge pull request #443 from IAmATeaPot418/patch-2 
Adding the not in operator
 2020-05-28 11:10:08 +01:00
Jamie Scott
5b5cafaa47
Adding the not in operator 
Adding the not in operator as another thing to check or test. It will equivalently act as { $ne: 1 } only it functions within an array.
 2020-05-28 00:34:48 -07:00
Karim Kanso
607c3293b4 strip trailing whitespace 2020-05-27 14:26:51 +01:00
Karim Kanso
f20c12a4a6 added git attributes to keep line ends standardised 2020-05-27 14:16:24 +01:00
Karim Kanso
a3416ba706 standardisze line endings 2020-05-27 14:10:50 +01:00
g0tmi1k
9a14bdb7ca
Merge pull request #441 from cactuschibre/master 
Reorder and add more Actuator endpoints

Source; https://apereo.github.io/cas/development/monitoring/Monitoring-Statistics.html
 2020-05-27 10:42:10 +01:00
g0tmi1k
67bdc2032e
Merge pull request #434 from Kegn/patch-1 
add nested traversal strings for /etc/passwd
 2020-05-27 09:55:47 +01:00
g0tmi1k
67947cfae1
Merge pull request #435 from righettod/master 
Add WWW and HTML folders
 2020-05-27 09:54:21 +01:00
g0tmi1k
fdfd855ec5
Merge pull request #437 from guest20/patch-1 
Rename Public-Source-Repo-Issues.txt to Public-Source-Repo-Issues.json
 2020-05-27 09:44:27 +01:00
cactuschibre
017b233805
Reorder and add more Actuator endpoints 2020-05-26 16:28:58 +02:00
guest20
6ccd6853d4
Rename Public-Source-Repo-Issues.txt to Public-Source-Repo-Issues.json 
This file is full of json, which might upset someone writing a script that assumes *.txt files are just url fragments....
 2020-05-24 13:07:50 +02:00