SecLists is a comprehensive collection of security testing lists maintained by Daniel Miessler, Jason Haddix, and g0tmi1k. The repository contains multiple types of lists used during security assessments and penetration testing activities. The collection includes usernames and passwords for credential testing, URLs for web application testing, sensitive data patterns for data discovery, fuzzing payloads for input validation testing, and web shells for post-exploitation activities. The repository serves as a centralized resource for security professionals conducting various types of security assessments. Users can clone the 1.2 GB repository to access all available lists for their testing purposes. The project provides organized collections of data that support different phases of security testing, from reconnaissance to exploitation.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A digital archive of the internet, allowing users to capture and browse archived web pages.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
An Azure Function that validates and relays Cobalt Strike beacon traffic based on Malleable C2 profile authentication.
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
Parrot Security OS is a comprehensive, secure, and customizable operating system for cybersecurity professionals, offering over 600+ tools and utilities for red and blue team operations.
AHHHZURE is an automated deployment script that creates vulnerable Azure cloud lab environments for offensive security training and cloud penetration testing practice.
SharpPrinter enables efficient discovery of network printers for security and management purposes.