SecLists

Security dataset

A collection of security-related data used during vulnerability assessments and penetration testing.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

GitHub

59k stars
2k watching
24k forks
Language: PHP
last commit: 4 days ago
Linked from 11 awesome lists


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
kalpmehta/securitytxt A file containing a list of known vulnerabilities in Magento 2 modules, providing guidance on how to secure them. 10
designsecurity/progpilot An application security testing tool for identifying vulnerabilities in PHP code 332
friendsofphp/security-advisories A centralized database of known security vulnerabilities in PHP projects and libraries 2,050
hasecuritysolutions/vulnwhisperer Automates vulnerability scan data aggregation and reporting for IT systems using various tools and frameworks. 1,360
fuzzysecurity/resource-list A curated collection of exploit tools and frameworks used in penetration testing and security research. 332
misp/misp-warninglists Provides lists of known indicators to inform users about potential false positives or other information in threat intelligence data 538
dustyfresh/php-vulnerability-audit-cheatsheet A collection of grep commands to help find potentially vulnerable PHP code 347
gobysec/weblogic Exploring and documenting WebLogic vulnerabilities to aid researchers in identifying and exploiting post-deserialization vulnerabilities 155
hashishrajan/cloud-security-vulnerabilities Lists publicly disclosed vulnerabilities in various cloud services. 357
swisskyrepo/vulny-code-static-analysis A script to detect vulnerabilities in PHP source code using static analysis and regular expressions. 397
clem9669/wordlists A collection of precompiled wordlists for password cracking, tailored to French language requirements 268
ghostlulzhacks/waybacksqliscanner Scans URLs from the wayback machine and tests GET parameters for SQL injection vulnerabilities. 186
emo-crab/scap-rs A collection of Rust libraries for working with vulnerability data from various sources. 16
1ndianl33t/gf-patterns A toolset for identifying potential security vulnerabilities and patterns in web applications 1,224
s0md3v/striker An offensive information and vulnerability scanner that identifies potential security issues in web applications 2,234