SecLists

工具

SecLists是安全测试人员的伴侣。它是在安全评估期间使用的多种类型的字典的集合。字典类型包括用户名,密码,URL,敏感数据,模糊测试负载,Web shell等等 。

https://github.com/danielmiessler/SecLists

About SecList

SecLists is the security tester’s companion. It’s a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by Daniel MiesslerJason Haddix, and g0tmi1k.

Install

Zip

wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip \
  && unzip SecList.zip \
  && rm -f SecList.zip

Git (Small)

git clone --depth 1 https://github.com/danielmiessler/SecLists.git

Git (Complete)

git clone git@github.com:danielmiessler/SecLists.git

Kali Linux (Tool Page)

apt -y install seclists

Attribution

See CONTRIBUTORS.md

Contributing

See CONTRIBUTING.md

Licensing

This project is licensed under the MIT license.

MIT License

NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in Seclists or FuzzDB that can harm your computer as-is, however it’s not recommended to store these files on a server or other important system due to the risk of local file include attacks.

微信 OR 支付宝 扫描二维码
为本文作者 打个赏
pay_weixin pay_zhifubao
如果文章对您有帮助,欢迎打赏赞助作者
没有评论

发表评论

工具
信息收集框架(神器)

地址:https://osintframework.com/

工具
使用imxss接收跨域资源共享漏洞(CORS)窃取的信息

imxss是什么? ImXSS是国内首套Java研发的Xss跨站脚本测试平台。ImXSS前身是Xss …

工具
A list of useful payloads

A list of useful payloads and bypass for Web Appli …