SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more. https://www.owasp.org/index.php/Proje…
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repo onto a new testing box and have access to every type of list that may be needed.
Significant effort is made to give attribution for these lists whenever possible, and if you are a list owner or know who the original author/curator is, please let us know so we can give proper credit.
Attribution
Adam Muntner and for the FuzzDB content, including all authors from the FuzzDB project
Ron Bowes of SkullSecurity for collaborating and including all his lists here
Clarkson University for their research that led to the Clarkson list
All the authors listed in the XSS with context doc, which was found on pastebin and added to by us
Ferruh Mavitina for the beginnings of the LFI Fuzz list
Kevin Johnson for laudnaum shells
RSnake for fierce hostname list
Charlie Campbell for Spanish word list, numerous other contributions
Rob Fuller for the IZMY list
Mark Burnett for the 10 million passwords list
shipCod3 for an SSH user/pass list
Steve Crapo for doing splitting work on a number of large lists
Thanks to Blessen Thomas for recommending Mario's/cure53's XSS vectors
Thanks to Danny Chrastil for submitting an anonymous JSON fuzzing list
Many thanks to geekspeed, EricSB, lukebeer, patrickmollohan, g0tmi1k, albinowax, and kurobeats for submitting via pull requests
Special thanks to shipcod3 for MANY contributions!
Thanks to Samar Dhwoj Acharya for allowing his Github Dorks content to be included!
Thanks to Liam Somerville for the excellent list of default passwords
Great thanks to Michael Henriksen for allowing us to include his Gitrob project's signatures
Honored to have @Brutelogic's brilliant XSS Cheatsheet added to the Fuzzing section!
Added 0xsobky's Ultimate XSS Polyglot!
This project stays great because of care and love from the community, and we will never forget that.
별이 총총해지는 밤,
저녁밥을 먹은 여자 넷이 우리 집에 모였다.
소위 밤마실. 각자 먹을 것 조금씩 들고 슬리퍼를
끌면서 왔다. 밤길 안전 걱정 같은 건 없다. '여자 혼자'
캄캄한 밤길에 '일말의 두려움' 없이 걷는다는 것,
도시에선 상상할 수 없는 일이지만 시골에서는
가능하다. 그 해방감을 남자들은
짐작이나 할 수 있을까.
- 윤인숙의《마음을 정하다》중에서 -
* 초저녁 밤하늘에
별이 총총해지기 시작하면
괜스레 엉덩이가 들썩거립니다.
밤참거리를 챙겨 이웃 친구 집에 가면
하나둘 같은 마음으로 나온 친구들을 만납니다.
집안 이야기, 동네 처녀 총각 이야기, 지나간
옛 추억 이야기... 지금도 시골 한켠에서는
밤마실의 해방감을 맛보며 사는
사람들이 있습니다.
...