admin/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2025-06-20 01:40:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,087 Commits 2 Branches 29 Tags
Commit Graph

2087 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ignacio J. Perez Portal
2bc6399bce fix(cicd): Removed insecure commit author from cicd pipelines. 2024-05-10 02:18:02 -03:00
Ignacio J. Perez Portal
71feee4767 Merge branch 'GithubActions' of github.com:ItsIgnacioPortal/SecLists into GithubActions 2024-04-24 23:29:39 -03:00
Ignacio J. Perez Portal
09d1e4cf21 fix(CICD): Added write permissions to the readme auto-updater workflow 
Prevents the error 'remote: Permission to USERNAME/SecLists.git denied to github-actions[bot].' when the action is run automatically from a seclists fork that has the default github-actions security settings
 2024-04-24 23:29:14 -03:00
Ignacio J. Perez Portal
c2f8dd0977 fix(CICD): Removed hard-coded repo URL 2024-04-24 23:27:11 -03:00
Ignacio J. Perez Portal
9cff6ce832 fix(CICD): Changed job name so it matches the Github Action name 2024-04-24 23:22:06 -03:00
Ignacio J. Perez Portal
9c95afac30 fix(CICD): Fixed github actions which executed on every push, ignoring their path filters. 
The list of paths were missing an indentation
 2024-04-24 23:20:28 -03:00
GitHub Action
9119acddfd [Github Action] Automated trickest wordlists update. 2024-04-25 02:01:25 +00:00
Ignacio J. Perez Portal
9de1419b8a fix(CICD): Added write permissions to the trickest-wordlist auto-updater workflow 
Prevents the error 'remote: Permission to USERNAME/SecLists.git denied to github-actions[bot].' when the action is run automatically from a seclists fork that has the default github-actions security settings
 2024-04-24 22:58:30 -03:00
Ignacio J. Perez Portal
6d53fe0c62 chore(CICD): Removed trailing spaces from a github action trigger paths 2024-04-24 22:48:33 -03:00
Ignacio J. Perez Portal
3cbbb9c719 Merge branch 'master' of github.com:ItsIgnacioPortal/SecLists 2024-04-24 05:31:20 -03:00
GitHub Action
9a3e66dbf8 [Github Action] Automated trickest wordlists update. 2024-04-24 00:19:27 +00:00
GitHub Action
54796aef81 [Github Action] Automated trickest wordlists update. 2024-04-23 00:19:43 +00:00
GitHub Action
ddd331b095 [Github Action] Automated trickest wordlists update. 2024-04-22 00:20:32 +00:00
GitHub Action
175b8bd3ff [Github Action] Automated trickest wordlists update. 2024-04-21 00:21:07 +00:00
GitHub Action
a257fde303 [Github Action] Automated trickest wordlists update. 2024-04-20 00:19:06 +00:00
GitHub Action
4c4eb6d3a2 [Github Action] Automated trickest wordlists update. 2024-04-19 00:19:30 +00:00
GitHub Action
f0892ec0ab [Github Action] Automated trickest wordlists update. 2024-04-18 00:19:18 +00:00
GitHub Action
4fb7f04a2f [Github Action] Automated trickest wordlists update. 2024-04-17 00:19:31 +00:00
GitHub Action
a86937ce15 [Github Action] Automated trickest wordlists update. 2024-04-16 00:19:11 +00:00
GitHub Action
6643be50d1 [Github Action] Automated trickest wordlists update. 2024-04-15 02:36:03 +00:00
GitHub Action
eacceeeea7 [Github Action] Automated trickest wordlists update. 2024-04-14 00:22:44 +00:00
GitHub Action
a8732be902 [Github Action] Automated trickest wordlists update. 2024-04-13 00:17:20 +00:00
GitHub Action
9904a5381c [Github Action] Automated trickest wordlists update. 2024-04-12 00:19:07 +00:00
GitHub Action
2a564a0911 [Github Action] Automated trickest wordlists update. 2024-04-11 00:19:56 +00:00
GitHub Action
8c4aa7fad8 [Github Action] Automated trickest wordlists update. 2024-04-10 00:19:02 +00:00
GitHub Action
61c18152b1 [Github Action] Automated trickest wordlists update. 2024-04-09 00:19:29 +00:00
GitHub Action
52e9ed1ac8 [Github Action] Automated trickest wordlists update. 2024-04-08 00:19:41 +00:00
GitHub Action
7e6e0ef15c [Github Action] Automated trickest wordlists update. 2024-04-07 00:21:45 +00:00
GitHub Action
ee33c6e1b7 [Github Action] Automated trickest wordlists update. 2024-04-06 00:18:21 +00:00
g0tmi1k
834cee13d0
Merge pull request #979 from molangning/patch-pwdb 
Imported and cleaned ignis-sec/Pwdb-Public

Source: https://github.com/ignis-sec/Pwdb-Public
 2024-04-05 15:32:48 +01:00
g0tmi1k
8c30d6b5c4
Merge pull request #982 from adeadfed/master 
Add new dictionary for Windows LFI fuzzing


Source: https://adeadfed.com/posts/testing-lfi-in-windows-how-i-never-got-a-30000-bounty/

> The `.` at the EOL is not a mistake
> This is done as an attempt to bypass filters by abusing Windows path normalization(1,2,3) (see https://github.com/danielmiessler/SecLists/pull/982 )
 2024-04-05 15:31:26 +01:00
g0tmi1k
d11b83a199
Merge pull request #994 from righettod/ntlm_directories_add 
Add a dict with common NTLM directories

Source: https://github.com/nyxgeek/ntlmscan

```
$ curl -sk https://raw.githubusercontent.com/nyxgeek/ntlmscan/master/paths.dict | cut -c 2- | sort -u
_windows/default.aspx?ReturnUrl=/
```
 2024-04-05 15:29:40 +01:00
g0tmi1k
abae3092df
Merge pull request #995 from molangning/patch-1 
Quick typo fix
 2024-04-05 15:28:49 +01:00
g0tmi1k
68ebc872de
Merge pull request #997 from molangning/patch-2 
Update validators.py
 2024-04-05 15:27:11 +01:00
g0tmi1k
e9337bebcf
Merge pull request #999 from ItsIgnacioPortal/RouterCredentials 
feat(passwords): Added router default users and passwords

Source: https://portforward.com/

```
import os
from bs4 import BeautifulSoup

invalidValues = ["none", "N/A", "blank", "user created", "password changes when reset", "none; created during initial setup", "PrintedOnRouterLabel", "provided by ISP"]
invalidKeywords = ["none", "leave blank", "n/a", "blank", "found by", "found on", "printed on", "configured during", "create", "last", "located", "on ", "sticker on", "refer to"]

def extract_credentials(file_path):
	with open(file_path, 'r') as file:
		content = file.read()
		soup = BeautifulSoup(content, 'html.parser')
		table = soup.find('table')
		if table:
			model = table.find('th').text.strip().lower().replace('model', '').strip().replace(' ', '-').replace('/', '-')
			usernames = set()
			passwords = set()
			for row in table.find_all('tr')[1:]:
				cols = row.find_all('td')
				username = cols[1].text.strip()
				password = cols[2].text.strip()

				if username not in invalidValues:
					addUsername = True
					tempusername = username.lower()

					for keyword in invalidKeywords:
						if tempusername.startswith(keyword):
							addUsername=False
							break

					if addUsername:
						usernames.add(username)

				if password not in invalidValues:
					addPassword = True
					temppassword = password.lower()
					for keyword in invalidKeywords:
						if temppassword.startswith(keyword):
							addPassword=False
							break

					if addPassword:
						passwords.add(password)

			return model, sorted(usernames), sorted(passwords)
		else:
			return None, None, None

def save_credentials(model, usernames, passwords, output_dir):
	if model and usernames and passwords:
		user_file_path = os.path.join(output_dir, f'{model}_default-users.txt')
		pass_file_path = os.path.join(output_dir, f'{model}_default-passwords.txt')
		with open(user_file_path, 'w') as user_file:
			user_file.write('\n'.join(usernames))
		with open(pass_file_path, 'w') as pass_file:
			pass_file.write('\n'.join(passwords))

def process_files(input_dir, output_dir):
	for file_name in os.listdir(input_dir):
		print(f'Processing file {file_name}')
		file_path = os.path.join(input_dir, file_name)
		model, usernames, passwords = extract_credentials(file_path)
		save_credentials(model, usernames, passwords, output_dir)

# Input directory containing the text files
input_dir = "C:\\Users\\User\\Desktop\\out\\portforward.com"
# Output directory where the output files will be saved
output_dir = "C:\\Users\\User\\Github\\SecLists\\Passwords\\Default-Credentials\\Routers"
process_files(input_dir, output_dir)
```
 2024-04-05 15:26:08 +01:00
g0tmi1k
babab451e7
Merge pull request #1001 from molangning/patch-issues-template 
Changed issues templates
 2024-04-05 15:24:06 +01:00
g0tmi1k
4bca650afa
Merge pull request #1002 from molangning/patch-contributing-guidelines 
Added more specifications
 2024-04-05 15:23:11 +01:00
g0tmi1k
0fd0f18fb6
Merge pull request #1003 from molangning/patch-normalise-line-endings 
Normalised line endings
 2024-04-05 15:22:24 +01:00
GitHub Action
9385914f42 [Github Action] Automated readme update. 2024-04-05 14:21:59 +00:00
g0tmi1k
48aaf83f4a
Merge pull request #1004 from molangning/patch-normalise-folders 
Rename folders
 2024-04-05 15:20:52 +01:00
g0tmi1k
d15e6a4545
Merge pull request #990 from 0xjams/CVE-2023-51442 
Added a JWT key used in CVE-2023-51442

Source: https://github.com/advisories/GHSA-wq59-4q6r-635r
 2024-04-05 15:19:40 +01:00
Mo Langning
73f78c4133 Rename folders 2024-04-05 10:42:21 +00:00
Mo Langning
c6fa73c975 Normalised line endings 2024-04-05 10:26:17 +00:00
Mo Langning
6b4504b9df Added more specifications 2024-04-05 10:19:41 +00:00
Mo Langning
d9dd80b90a Changed templates 2024-04-05 10:12:47 +00:00
Ignacio J. Perez Portal
c84fcf055b
chore: Wording 2024-04-05 04:03:05 -03:00
Ignacio J. Perez Portal
9c80d344e1
chore: Fixed typo in router default-passwords README.md 2024-04-05 04:02:43 -03:00
Ignacio J. Perez Portal
f915c403ec Revert "fix: Removed windows-incompatible content" 
This reverts commit 644238c35c75cfc7e2b3ddfb838f17fb84ae2fa7.
 2024-04-05 03:45:32 -03:00
Ignacio J. Perez Portal
fff4d42b5f feat(passwords): Added router default users and passwords 
sources:
- https://portforward.com/
 2024-04-05 03:40:32 -03:00
Mo Langning
8b020ac007
Update validators.py 2024-04-05 10:00:33 +08:00