danielmiessler/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2024-09-11 10:55:33 +03:00
Code Issues Projects Releases Wiki Activity
3,716 Commits 1 Branch 26 Tags 2 GiB
master
Commit Graph

3716 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dominique RIGHETTO
611d47caf3
Add a version of the payload for CodeContext 
Add the payload "42*42" to the fuzzing list in order to cover the "Code context" detection point mentioned in the https://portswigger.net/web-security/server-side-template-injection training
 2020-04-25 09:13:06 +02:00
g0tmi1k
9c54082eb2
Merge pull request #414 from CoccodrillooXDS/patch-1 
Update names.txt
 2020-04-20 11:28:37 +01:00
CoccodrillooXDS
0c14089536
Update names.txt 
added "root" to the list as based on @unKn0wnUser453's issue (#408)
 2020-04-20 11:54:05 +02:00
g0tmi1k
a7dbde1ec9
Merge pull request #412 from righettod/master 
Collection of template engines expression

Source: https://github.com/expressjs/express/wiki#template-engines
 2020-04-20 10:06:06 +01:00
g0tmi1k
b3b337e6f1
Merge pull request #390 from ipentest/add-ipentest 
Added top 100 email domains to Seclists/Fuzzing

Source: https://email-verify.my-addr.com/list-of-most-popular-email-domains.php
 2020-04-20 10:04:42 +01:00
Dominique RIGHETTO
1bd30300de
Add a initial collection of template engines expression 2020-04-18 17:16:20 +02:00
g0tmi1k
fa5ef9b567
Merge pull request #411 from pbafe/master 
Create Drupal.txt
 2020-04-16 20:14:16 +01:00
pbafe
5a8df75c4b
Create Drupal.txt 2020-04-16 20:33:25 +02:00
g0tmi1k
aaee91b0c2
Merge pull request #410 from caioluders/master 
Create schemes.txt

Source: https://www.iana.org/assignments/uri-schemes/uri-schemes.txt
 2020-04-16 15:18:15 +01:00
Caio Lüders
450e4d0ee9
Create schemes.txt 
Extracted from https://www.iana.org/assignments/uri-schemes/uri-schemes.txt
 2020-04-16 11:06:20 -03:00
g0tmi1k
bea2aa14ff
Merge pull request #409 from aguilbau/aguilbau/windows-lfi 
add a common windows lfi path
 2020-04-15 11:53:49 +01:00
Antoine Guilbaud
13b1f18901 add a common windows lfi path 2020-04-15 12:49:42 +02:00
g0tmi1k
b1f5e2171d
Merge pull request #406 from mswell/fix_syntax 
renamed to correct name
 2020-04-07 13:05:12 +01:00
Wellington Moraes
83a500c9d4 renamed to correct name 2020-04-07 08:52:35 -03:00
g0tmi1k
12d84b3b65
Merge pull request #403 from milangfx/apidocs 
Add /apidocs/api-docs.json, /api-docs
 2020-04-06 11:35:28 +01:00
g0tmi1k
1d52264b8a
Merge pull request #404 from Tibo-le-canard/patch-2 
Adding actuator endpoints

Source: https://docs.spring.io/spring-boot/docs/current/reference/html/production-ready-features.html
 2020-04-06 11:34:53 +01:00
Soufiane Tahiri
c368fc5f80
add swagger path 2020-04-02 12:06:36 +02:00
Tibo-le-canard
697537b256
Adding actuator endpoints 2020-04-01 14:53:34 +02:00
milangfx
e82e5e5026 add /apidocs/api-docs.json, /api-docs 2020-04-01 14:42:20 +02:00
g0tmi1k
5acb04abca
Merge pull request #402 from socketz/patch-1 
Added wp-content/debug.log
 2020-03-30 16:30:18 +01:00
socketz
c51120382e
Added wp-content/debug.log 2020-03-30 15:18:48 +02:00
g0tmi1k
99cf9a39b9
Merge pull request #400 from g0tmi1k/misc 
Add CFM Shell
 2020-03-25 13:25:56 +00:00
g0t mi1k
46f55b814f Add CFM Shell 
Source: http://pastebin.com/3HKGQCWF // https://web.archive.org/web/20170322222809/http://pastebin.com/3HKGQCWF
 2020-03-25 13:25:00 +00:00
g0tmi1k
7a17dfcdca
Merge pull request #399 from noraj/fix-arch 
fix architecture
 2020-03-17 13:36:27 +00:00
Alexandre ZANNI
220d997033 fix architecture 
fix https://github.com/danielmiessler/SecLists/issues/398
 2020-03-16 14:44:20 +01:00
g0tmi1k
5517d9fdec
Merge pull request #395 from jaweesh/master 
added Umbraco cms identification from their official files

Source; http://umbracoreleases.blob.core.windows.net/download/UmbracoCms.8.5.4.zip
 2020-03-02 11:07:44 +00:00
jaweesh
60466a4597 added Umbraco cms identification from their zip file 2020-03-02 14:29:24 +04:00
g0tmi1k
ef320ecb7e
Merge pull request #394 from reydc/master 
Update graphql.txt

Source: 
- https://blog.doyensec.com/2018/05/17/graphql-security-overview.html
- https://medium.com/@localh0t/discovering-graphql-endpoints-and-sqli-vulnerabilities-5d39f26cea2e
 2020-02-23 12:16:19 -08:00
reydc
1fb8561d9c
Update graphql.txt 2020-02-23 10:20:31 -03:00
g0tmi1k
af0d03fd59
Merge pull request #391 from kazkansouh/cirt-refresh 
CIRT Credentials: refreshed and fixed couple issues
 2020-02-15 10:01:00 +00:00
Karim Kanso
0080212eb5 refreshed and fixed couple issues with cirt credentials 2020-02-15 09:46:06 +00:00
g0tmi1k
709d6ebeb5
Merge pull request #388 from Lavaei/master 
Add innerHTML as dangerous input in Angular 2+
 2020-02-13 14:47:41 +00:00
ipentest
b2cf6971c9 Add ipentest to contributors 2020-02-12 11:46:44 -05:00
Mostafa Lavaei
92fb303ba0 Update Angular dangerous functions 2020-01-31 17:27:18 +03:30
Mostafa Lavaei
d6c7306f44 Update Angular dangerous functions 2020-01-31 17:26:08 +03:30
g0tmi1k
916d54df11
Merge pull request #385 from righettod/master 
Detect reverse proxy inconsistencies

Source: https://www.acunetix.com/blog/articles/a-fresh-look-on-reverse-proxy-related-attacks/
 2020-01-22 10:33:44 +00:00
Dominique RIGHETTO
cb37e5b03d
Create reverse-proxy-inconsistencies.txt 2020-01-22 09:03:34 +01:00
g0tmi1k
e0ca853d5e
Update CONTRIBUTORS.md 2020-01-16 09:50:04 +00:00
g0tmi1k
31462bdee3
Merge pull request #382 from righettod/master 
Add entries from a blog about content discovery in API

Source: https://blog.jonlu.ca/posts/experiments-and-growth-hacking
 2020-01-03 15:26:16 +00:00
Dominique RIGHETTO
44b3fdedf2
Add entries from a blog about content discovery in API 
Blog url: https://blog.jonlu.ca/posts/experiments-and-growth-hacking
 2020-01-03 16:22:45 +01:00
g0tmi1k
7f7101d662
Merge pull request #380 from righettod/master 
Add an entry from the Portswigger WebAcademy about access control

Source: https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality
 2020-01-01 14:25:25 +00:00
Dominique RIGHETTO
f7314e9c34
Add entry from Portswigger WebAcademy 
Entry found in labs from https://portswigger.net/web-security/access-control
 2019-12-29 11:50:12 +01:00
g0tmi1k
bf961f205a
Merge pull request #379 from g0tmi1k/misc 
Misc
 2019-12-02 22:02:42 +00:00
g0t mi1k
9428544c6f Add author table 2019-12-02 22:01:59 +00:00
g0t mi1k
73cd7d6577 Add creds for web-shells 2019-12-02 21:58:53 +00:00
g0tmi1k
376a5de32a
Merge pull request #378 from dejanzelic/master 
Added wordpress plugin shell by leonjza

Source: https://github.com/leonjza/wordpress-shell/blob/master/shell.php
 2019-12-02 21:52:51 +00:00
Dejan Zelic
ec75402c12 Added wordpress plugin shell by leonjza 2019-12-02 14:49:17 -07:00
g0tmi1k
152c4a2a91
Merge pull request #374 from s7x/master 
Added the entire XSS Cheat Sheet of PortSwigger, their HTML events and tags. Added keyhacks by streaak.

Keyhacks:
https://github.com/streaak/keyhacks

Portswigger XSS Cheat Sheet:
https://portswigger.net/web-security/cross-site-scripting/cheat-sheet
 2019-11-25 09:20:00 +00:00
S7X Deckard Case
9059518579 Added keyhacks by streaak. 2019-11-18 10:41:05 +01:00
S7X Deckard Case
b8e87ad36c Added the entire XSS Cheat Sheet of PortSwigger, their HTML events and tags. 2019-11-18 09:33:26 +01:00