SecLists

Security dataset

A collection of security-related data used during vulnerability assessments and penetration testing.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

GitHub

59k stars
2k watching
24k forks
Language: PHP
last commit: about 22 hours ago
Linked from 11 awesome lists


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
kalpmehta/securitytxt A file containing a list of known vulnerabilities in Magento 2 modules, providing guidance on how to secure them. 10
designsecurity/progpilot An application security testing tool for identifying vulnerabilities in PHP code 330
friendsofphp/security-advisories A centralized database of known security vulnerabilities in PHP projects and libraries 2,045
hasecuritysolutions/vulnwhisperer An aggregator tool for vulnerability scan reports from various scanners 1,357
fuzzysecurity/resource-list A curated collection of exploit tools and frameworks used in penetration testing and security research. 332
misp/misp-warninglists Provides lists of known indicators to inform users about potential false positives or other information in threat intelligence data 532
dustyfresh/php-vulnerability-audit-cheatsheet A collection of grep commands to help find potentially vulnerable PHP code 346
gobysec/weblogic Exploring and documenting WebLogic vulnerabilities to aid researchers in identifying and exploiting post-deserialization vulnerabilities 155
hashishrajan/cloud-security-vulnerabilities Lists publicly disclosed vulnerabilities in various cloud services. 357
swisskyrepo/vulny-code-static-analysis A script to detect vulnerabilities in PHP source code using static analysis and regular expressions. 398
clem9669/wordlists A collection of precompiled wordlists for password cracking, tailored to French language requirements 262
ghostlulzhacks/waybacksqliscanner Scans URLs from the wayback machine and tests GET parameters for SQL injection vulnerabilities. 185
emo-crab/scap-rs A collection of Rust libraries for working with vulnerability data from various sources. 16
1ndianl33t/gf-patterns A toolset for identifying potential security vulnerabilities and patterns in web applications 1,218
s0md3v/striker An offensive information and vulnerability scanner that identifies potential security issues in web applications 2,234