SecLists/README.md

<div align="center">
  
SecLists is graciously supported by…

[![Github Repo Tagline](https://github.com/user-attachments/assets/96ab3d81-9b13-4df4-ba09-75dee7a5c3d2)](https://warp.dev/seclists)

![seclists.png](SecLists.png "seclists.png")

</div>

### About SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.

This project is maintained by [Daniel Miessler](https://danielmiessler.com/), [Jason Haddix](https://twitter.com/Jhaddix), [Ignacio Portal](https://github.com/ItsIgnacioPortal) and [g0tmi1k](https://blog.g0tmi1k.com/).

- - -


### Repository details

![Repo size](https://img.shields.io/github/repo-size/danielmiessler/SecLists.svg)

<!-- This badge is automatically updated by a GitHub Action. Do not edit manually. -->
![Approx cloning time](https://img.shields.io/badge/clone%20time-~%205m%2037s%20@50Mb/s-blue)


- - -

### Install

**Zip**

```
wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip && unzip SecList.zip && rm -f SecList.zip
```

**Git: No commit history (faster)**

```
git clone --depth 1 https://github.com/danielmiessler/SecLists.git
```

**Git: Complete**

```
git clone https://github.com/danielmiessler/SecLists.git
```

**Kali Linux** ([Tool Page](https://www.kali.org/tools/seclists/))

```
apt -y install seclists
```

**BlackArch** ([Tool Page](https://blackarch.org/tools.html))

```
sudo pacman -S seclists
```

- - -

### Attribution

See [CONTRIBUTORS.md](CONTRIBUTORS.md)

- - -

### Contributing

See [CONTRIBUTING.md](CONTRIBUTING.md)

- - -

### Similar Projects

- [Assetnote Wordlists](https://wordlists.assetnote.io/): High quality wordlists for content and subdomain discovery which are automatically updated every month.
- [fuzz.txt](https://github.com/Bo0oM/fuzz.txt): Wordlists of "potentially dangerous" files.
- [FuzzDB](https://github.com/fuzzdb-project/fuzzdb): Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery. 
- [PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings): A list of useful payloads and bypass for Web Application Security and Pentest/CTF 
- [BiblePass](https://github.com/MusicGivesMeLife/BiblePass): Wordlists compiled from Bible verses
- [SamLists](https://github.com/the-xentropy/samlists): Data-driven wordlists containing HTTP parameter names, directory names and filenames.

### Wordlist Tools

- [Cook](https://github.com/giteshnxtlvl/cook): A wordlist framework. An overpowered wordlist generator, splitter, merger, finder and saver. Cook facilitates the creation of permutations and combinations with a variety of encodings and many more features.
- [Wl](https://github.com/s0md3v/wl): CLI utility for converting strings to a given casing style.
- [CeWL](https://github.com/digininja/CeWL): Custom Word List generator.

- - -

### Licensing

This project is licensed under the [MIT license](LICENSE).

[![MIT License](https://img.shields.io/badge/license-MIT_License-blue)](https://opensource.org/licenses/MIT)

<sup>NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in SecLists that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.</sup>
Update README.md 2025-04-14 09:48:44 -07:00			`<div align="center">`
Update README.md 2025-04-14 09:46:51 -07:00
Update README.md 2025-04-14 09:46:03 -07:00			`SecLists is graciously supported by…`

			`[![Github Repo Tagline](https://github.com/user-attachments/assets/96ab3d81-9b13-4df4-ba09-75dee7a5c3d2)](https://warp.dev/seclists)`

Header Image - Higher Resolution - Light/Dark mode safe 2023-03-10 10:55:08 -05:00			`![seclists.png](SecLists.png "seclists.png")`
Fixed new SecLists logo again. 2016-01-21 10:00:25 -08:00
Update README.md 2025-04-14 09:46:51 -07:00			`</div>`

Updated name of project in Readme. 2019-02-19 06:03:04 -08:00			`### About SecLists`
Standard commit. 2014-05-16 13:33:53 -07:00
Sort out README 2018-10-15 13:07:39 +01:00			`SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. The goal is to enable a security tester to pull this repository onto a new testing box and have access to every type of list that may be needed.`
Added description clarification. 2013-07-23 12:27:52 -07:00
fix(docs): Added "Ignacio Portal" to the project credits. 2024-12-20 02:36:09 -03:00			`This project is maintained by [Daniel Miessler](https://danielmiessler.com/), [Jason Haddix](https://twitter.com/Jhaddix), [Ignacio Portal](https://github.com/ItsIgnacioPortal) and [g0tmi1k](https://blog.g0tmi1k.com/).`
Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00
			`- - -`
Reformated readme 2023-11-26 22:00:03 +08:00
[Github Action] Automated readme update. 2023-11-26 14:03:32 +00:00
			`### Repository details`

feat(docs): Replace repository details with badges for better visibility. 2025-01-24 13:41:40 +01:00			`![Repo size](https://img.shields.io/github/repo-size/danielmiessler/SecLists.svg)`
[Github Action] Automated readme update. 2023-11-26 14:03:32 +00:00
feat(docs): Replace repository details with badges for better visibility. 2025-01-24 13:41:40 +01:00			`<!-- This badge is automatically updated by a GitHub Action. Do not edit manually. -->`
[Github Action] Automated readme update. 2025-05-01 18:32:19 +00:00			`![Approx cloning time](https://img.shields.io/badge/clone%20time-~%205m%2037s%20@50Mb/s-blue)`
[Github Action] Automated readme update. 2023-11-26 14:03:32 +00:00
Updated README 2014-05-16 13:44:20 -07:00
Reformated readme 2023-11-26 22:00:03 +08:00			`- - -`

Add install information 2018-11-26 10:19:38 +00:00			`### Install`

			`Zip`
Formatting and links 2021-11-24 10:19:26 +00:00
Add install information 2018-11-26 10:19:38 +00:00			```
fix(docs): Condensed multi-line download commands into a single line This should facilitate copy-pasting the download commands into terminals that don't support line-jumps via backslashes, such as Powershell 7 2025-02-17 23:35:29 -03:00			`wget -c https://github.com/danielmiessler/SecLists/archive/master.zip -O SecList.zip && unzip SecList.zip && rm -f SecList.zip`
Add install information 2018-11-26 10:19:38 +00:00			```

fix(docs): Made clear what the difference is between parcial cloning and complete cloning 2025-01-24 22:11:40 -03:00			`Git: No commit history (faster)`
Formatting and links 2021-11-24 10:19:26 +00:00
Add install information 2018-11-26 10:19:38 +00:00			```
fix(docs): Condensed multi-line download commands into a single line This should facilitate copy-pasting the download commands into terminals that don't support line-jumps via backslashes, such as Powershell 7 2025-02-17 23:35:29 -03:00			`git clone --depth 1 https://github.com/danielmiessler/SecLists.git`
Add install information 2018-11-26 10:19:38 +00:00			```

fix(docs): Made clear what the difference is between parcial cloning and complete cloning 2025-01-24 22:11:40 -03:00			`Git: Complete`
Formatting and links 2021-11-24 10:19:26 +00:00
Add install information 2018-11-26 10:19:38 +00:00			```
Fix git clone complete path 2019-07-11 20:28:04 +02:00			`git clone https://github.com/danielmiessler/SecLists.git`
Add install information 2018-11-26 10:19:38 +00:00			```

Formatting and links 2021-11-24 10:19:26 +00:00			`Kali Linux ([Tool Page](https://www.kali.org/tools/seclists/))`

Add install information 2018-11-26 10:19:38 +00:00			```
Update README.md Fix typo in apt intall command 2018-12-09 11:35:28 +07:00			`apt -y install seclists`
Add BlackArch install steps in Readme 2024-01-27 00:01:18 +03:00			```

			`BlackArch ([Tool Page](https://blackarch.org/tools.html))`

			```
			`sudo pacman -S seclists`
Add install information 2018-11-26 10:19:38 +00:00			```

Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00			`- - -`

Sort out README 2018-10-15 13:07:39 +01:00			`### Attribution`

			`See [CONTRIBUTORS.md](CONTRIBUTORS.md)`
Update README.md 2018-06-13 12:14:09 +01:00
Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00			`- - -`

			`### Contributing`
Update README.md 2018-06-13 12:14:09 +01:00
			`See [CONTRIBUTING.md](CONTRIBUTING.md)`
README Drama. 2017-12-19 04:49:53 -08:00
Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00			`- - -`

Typo 2019-01-07 15:58:27 +00:00			`### Similar Projects`
Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00
feat(docs): Added link descriptions to associated projects and tools in main README 2025-02-27 06:35:22 -03:00			`- [Assetnote Wordlists](https://wordlists.assetnote.io/): High quality wordlists for content and subdomain discovery which are automatically updated every month.`
			`- [fuzz.txt](https://github.com/Bo0oM/fuzz.txt): Wordlists of "potentially dangerous" files.`
			`- [FuzzDB](https://github.com/fuzzdb-project/fuzzdb): Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.`
			`- [PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings): A list of useful payloads and bypass for Web Application Security and Pentest/CTF`
chore(wordlist): Removed BiblePass project related to #54 2025-02-17 23:01:32 -03:00			`- [BiblePass](https://github.com/MusicGivesMeLife/BiblePass): Wordlists compiled from Bible verses`
feat(docs): Added link descriptions to associated projects and tools in main README 2025-02-27 06:35:22 -03:00			`- [SamLists](https://github.com/the-xentropy/samlists): Data-driven wordlists containing HTTP parameter names, directory names and filenames.`
feat(docs): Added 'Wordlist Tools' category to main README 2025-02-27 06:30:34 -03:00
			`### Wordlist Tools`

fix(docs): Fixed wording on the 'Cook' tool description 2025-04-16 18:21:24 -03:00			`- [Cook](https://github.com/giteshnxtlvl/cook): A wordlist framework. An overpowered wordlist generator, splitter, merger, finder and saver. Cook facilitates the creation of permutations and combinations with a variety of encodings and many more features.`
feat(docs): Added 'wl' tool 2025-02-27 06:36:08 -03:00			`- [Wl](https://github.com/s0md3v/wl): CLI utility for converting strings to a given casing style.`
feat(docs): Added 'CeWL' tool 2025-02-27 06:47:07 -03:00			`- [CeWL](https://github.com/digininja/CeWL): Custom Word List generator.`
Fix README - URLs and extra resources 2019-01-07 15:49:28 +00:00
			`- - -`

			`### Licensing`
README Drama. 2017-12-19 04:49:53 -08:00
Sort out README 2018-10-15 13:07:39 +01:00			`This project is licensed under the [MIT license](LICENSE).`
README Drama. 2017-12-19 04:49:53 -08:00
Update README.md 2024-04-09 11:21:51 +03:00			`[![MIT License](https://img.shields.io/badge/license-MIT_License-blue)](https://opensource.org/licenses/MIT)`
README Drama. 2017-12-19 04:49:53 -08:00
Update README.md 2019-11-03 11:04:57 +00:00			`<sup>NOTE: Downloading this repository is likely to cause a false-positive alarm by your anti-virus or anti-malware software, the filepath should be whitelisted. There is nothing in SecLists that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.</sup>`