Password dictionary Penetration test dictionary Blast dictionary

Password dictionary Penetration test dictionary Blast dictionary

Password dictionary Penetration test dictionary Blast dictionary
Download address: //www.lanzous.com/b00n7iwqh
Download address 2: github.com/ddosi/hack
Password: ddosi.com
Unzip password: www.ddosi.com

The following figure lists four random password dictionaries in the fuzz dictionary

Password dictionary Penetration test dictionary Blast dictionary

The dictionary mainly includes the following:

# Content:

1. Port # Port numbers that appear frequently. I usually use Telnet to scan ports, so there is no line feed for each port number.

2. User # is mainly some user passwords collected from the network.

       / IDC_password / # IDC burst password
       / User_name / # username
       / User_password / # User password

3. Web_Middleware_other # some middleware, database, operating system

       / db2 / # db2 Blast
       / generic /
       / oracle / # generic-listpairs blasting
       / postgres / # postgres blasting
       / tomcat / # tomcat blast
       / unix-os / # unix blasting
       / phpbb / # phpbb blasting
       / userAgents / # useragent


4. Protocol_password # protocol Example: SNMP

5. Xss_payload # Some Xss payload

6. Sessionid # Sessionid dictionary

7. Errors # Some error messages. ps: database, middleware, etc.

8. Subdomains # Subdomains. ps: This dictionary should be a foreigner's dictionary.

        / CcTLD / # CcTLD
        / gTLD / # gTLD
        / Subdomains_En / # Normal subdomains. ps: This thing can only be used, it is not complete.

9. Fuzz # Some Fuzz content. ps: json, xml, callback, etc. There is too much content, just look at the file name.

10. Web_shell # Some webshells, common passwords, and paths.

11. Xss_payload # Xss paylod.

12. Path # file name, suffix, path, etc.

13. Other # Other content. ps: mainly foreigners

14. Patch # paths, files, etc.


Explo1t Dict
│
├─Errors
│ errors.txt
│
├─Fuzz
│ Agreement.txt
│ alt-extensions-asp.txt
│ alt-extensions-coldfusion.txt
│ alt-extensions-jsp.txt
│ alt-extensions-perl.txt
│ alt-extensions-php.txt
│ amazon.txt
│ breakpoint-ignores.txt
│ callback.txt
│ callback_dict.txt
│ char.txt
│ command-execution-unix.txt
│ command-injection-template.txt
│ Commands-Linux.txt
│ Commands-OSX.txt
│ Commands-Windows.txt
│ Commands-WindowsPowershell.txt
│ common-ms-httpd-log-locations.txt
│ common-unix-httpd-log-locations.txt
│ CommonDebugParamNames.txt
│ CommonMethodNames.txt
│ crlf-injection.txt
│ DebugParams.Json.fuzz.txt
│ debug_param_name.txt
│ errors.txt
│ extensions.txt
│ file-ul-filter-bypass-commonly-writable-directories.txt
│ file-ul-filter-bypass-microsoft-asp-filetype-bf.txt
│ file-ul-filter-bypass-microsoft-asp.txt
│ file-ul-filter-bypass-ms-php.txt
│ file-ul-filter-bypass-x-platform-generic.txt
│ file-ul-filter-bypass-x-platform-php.txt
│ full_hex.txt
│ HexValsAllBytes.txt
│ hpp.txt
│ http-header-cache-poison.txt
│ http-protocol-methods.txt
│ http-request-header-field-names.txt
│ http-response-header-field-names.txt
│ image_size.txt
│ invalid-filenames-linux.txt
│ invalid-filenames-microsoft.txt
│ invalid-filesystem-chars-microsoft.txt
│ invalid-filesystem-chars-osx.txt
│ JSON_Fuzzing.txt
│ known-uri-types.txt
│ lfi-list.txt
│ localhost.txt
│ MimeTypes.txt
│ nsa-wordlist.txt
│ NullByteRepresentations.txt
│ OSCommandInject.Windows.txt
│ pii.readme.txt
│ pii.txt
│ redirect-injection-template.txt
│ redirect-urls-template.txt
│ server-side-includes-generic.txt
│ sessionid.txt
│ shell-delimiters.txt
│ shell-operators.txt
│ source-disc-cmd-exec-traversal.txt
│ Url-SSRF.txt
│ Url_redirct.txt
│ useful-commands-unix.txt
│ useful-commands-windows.txt
│ user-agents.txt
│ UserAgentListCommon.txt
│ UserAgentListLarge.txt
│ UserAgents.txt
│ XXE.txt
│
├─Other
│ faithwriters.txt
│ john.txt
│ namelist.txt
│ twitter.txt
│ weaksauce.txt
│
├─Patch
│ │ admin.txt
│ │ asp.txt
│ │ aspx.txt
│ │ back.txt
│ │ cfm.txt
│ │ cgi.txt
│ │ common.txt
│ │ dir.txt
│ │ dir2.txt
│ │ dir_big.txt
│ │ Fck Editor.txt
│ │ fuckyou.txt
│ │ fuckyou2.txt
│ │ jsp.txt
│ │ mdb.txt
│ │ php.txt
│ │ py.txt
│ │ rar.txt
│ │ tomcat.txt
│ │ weblogic.txt
│ │ backdoor scan.txt
│ │
│ └─Stopwatch
│ data.txt
│
├─Port
│ Port.txt
│
├─Protocol_password
│ Snmp_password.txt
│
├─Sessionid
│ sessionid.txt
│
├─Subdomains
│ CcTLD.txt
│ gTLD.txt
│ Subdomains_En.txt
│
├─User
│ ├─IDC_password
│ │ IDC_password_1.txt
│ │ IDC_password_2.txt
│ │ IDC_password_3.txt
│ │ IDC_password_4.txt
│ │ IDC_password_5.txt
│ │ IDC_password_6.txt
│ │
│ ├─User_name
│ │ China_name.txt
│ │ QQ_Mail.txt
│ │ renkoutop.txt
│ │ top10W.txt
│ │ top500username.txt
│ │ username.txt
│ │ User_name_En.txt
│ │ commonly used mail.txt
│ │
│ └─User_password
│ 3389 Blast Password.txt
│ Comprehensive_password_10_En.txt
│ Comprehensive_password_11_En.txt
│ Comprehensive_password_1_En.txt
│ Comprehensive_password_2_En.txt
│ Comprehensive_password_3_En.txt
│ Comprehensive_password_4_En.txt
│ Comprehensive_password_5_En.txt
│ Comprehensive_password_6_En.txt
│ Comprehensive_password_7_En.txt
│ Comprehensive_password_8_En.txt
│ Comprehensive_password_9_En.txt
│ jiahouzhui.py
│ NT password.txt
│ passwords_1.txt
│ top100password.txt
│ Wail_passwd.txt
│ Weak_password.txt
│ password.txt
│ password 1.txt
│ Commonly used _passwd.txt
│ Common Password 1.txt
│ Common operation and maintenance system user name and password.txt
│
├─Web_Middleware_other
│ │ liunx_users_dictionaries.txt
│ │ default weblogic username and password.txt
│ │
│ ├─db2
│ │ db2_default_pass.txt
│ │ db2_default_user.txt
│ │ db2_default_userpass.txt
│ │
│ ├─generic-listpairs
│ │ http_default_pass.txt
│ │ http_default_userpass.txt
│ │ http_default_users.txt
│ │
│ ├─oracle
│ │ oracle_logins.txt
│ │ oracle_login_password.txt
│ │ oracle_passwords.txt
│ │ _hci_oracle_passwords.txt
│ │ _oracle_default_passwords.txt
│ │
│ ├─phpbb
│ │ phpbb.txt
│ │
│ ├─postgres
│ │ postgres_default_pass.txt
│ │ postgres_default_user.txt
│ │ postgres_default_userpass.txt
│ │
│ ├─tomcat
│ │ tomcat_mgr_default_pass.txt
│ │ tomcat_mgr_default_userpass.txt
│ │ tomcat_mgr_default_users.txt
│ │
│ ├─unix-os
│ │ unix_passwords.txt
│ │ unix_users.txt
│ │
│ └─userAgents
│ UserAgents.txt
│
├─Web_shell
│ list.txt
│ webshellPassword.txt
│ webshell common password.txt
│
└─Xss_payload
        all-encodings-of-lt.txt
        default-javascript-event-attributes.txt
        easyXssPayload.txt
        html-event-attributes.txt
        JHADDIX_XSS_WITH_CONTEXT.doc.txt
        README.txt
        xss-other.txt
        xss-rsnake.txt
        xss-uri.txt
        XSSPolyglot.txt

from

.



Source link




TAGS
Share This

COMMENTS

Wordpress (0)
Disqus ( )