Bug-Bounty-Wordlists
bugbounty-cheatsheet
Bug-Bounty-Wordlists | bugbounty-cheatsheet | |
---|---|---|
2 | 3 | |
1,039 | 5,576 | |
- | - | |
0.8 | 0.0 | |
about 1 year ago | 8 months ago | |
MIT License | Creative Commons Attribution Share Alike 4.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Bug-Bounty-Wordlists
bugbounty-cheatsheet
What are some alternatives?
WordList
API-Security-Checklist - Checklist of the most important security countermeasures when designing, testing, and releasing your API
fuzzdb - Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
wstg - The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
OneListForAll - Rockyou for web fuzzing
sql-injection-payload-list - 🎯 SQL Injection Payload List
fuzz.txt - Potentially dangerous files
command-injection-payload-list - 🎯 Command Injection Payload List
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
ssti-payloads - 🎯 Server Side Template Injection Payloads
can-i-take-over-xyz - "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Infosec_Reference - An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.