SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and m
Go to file
2022-07-23 16:42:03 +02:00
.bin Add script to build a list of of environment identifiers based on sub domain names. 2021-11-26 12:14:25 +01:00
.github/workflows Prepared github action for merging 2022-01-29 06:30:06 +00:00
Discovery Adds activation to common.txt 2022-07-23 16:42:03 +02:00
Fuzzing Merge pull request #708 from D3vil0per/patch-2 2022-04-26 17:26:16 +01:00
IOCs Fix #259 - Recover from bad merge 2019-01-07 15:40:56 +00:00
Miscellaneous Merge pull request #656 from A1vinSmith/master 2022-02-02 23:40:50 +00:00
Passwords Add Baicells default creds from CVE-2022-24693 2022-03-30 10:37:15 -04:00
Pattern-Matching Update Angular dangerous functions 2020-01-31 17:27:18 +03:30
Payloads Add more zip-bombs 2019-08-18 11:34:35 +01:00
Usernames Add: Top common Indian forenames 2021-12-03 22:19:14 +05:30
Web-Shells Merge pull request #709 from azams/master 2022-04-26 17:25:56 +01:00
.gitattributes added git attributes to keep line ends standardised 2020-05-27 14:16:24 +01:00
.gitignore Update Angular dangerous functions 2020-01-31 17:26:08 +03:30
CONTRIBUTING.md Update CONTRIBUTING.md 2018-06-13 12:07:34 +01:00
CONTRIBUTORS.md Update for 2022.2 2022-04-26 17:46:18 +01:00
LICENSE Create LICENSE 2018-06-13 12:04:57 +01:00
README.md Formatting and links 2021-11-24 10:19:26 +00:00

seclists.png

About SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by Daniel Miessler, Jason Haddix, and g0tmi1k.


Install

Zip

wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip \
  && unzip SecList.zip \
  && rm -f SecList.zip

Git (Small)

git clone --depth 1 \
  https://github.com/danielmiessler/SecLists.git

Git (Complete)

git clone https://github.com/danielmiessler/SecLists.git

Kali Linux (Tool Page)

apt -y install seclists

Attribution

See CONTRIBUTORS.md


Contributing

See CONTRIBUTING.md


Similar Projects


Licensing

This project is licensed under the MIT license.

MIT License

NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in SecLists that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.