admin/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2025-06-07 21:46:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,115 Commits 2 Branches 29 Tags
Commit Graph

2115 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
GitHub Action
a8732be902 [Github Action] Automated trickest wordlists update. 2024-04-13 00:17:20 +00:00
GitHub Action
9904a5381c [Github Action] Automated trickest wordlists update. 2024-04-12 00:19:07 +00:00
GitHub Action
2a564a0911 [Github Action] Automated trickest wordlists update. 2024-04-11 00:19:56 +00:00
GitHub Action
8c4aa7fad8 [Github Action] Automated trickest wordlists update. 2024-04-10 00:19:02 +00:00
GitHub Action
61c18152b1 [Github Action] Automated trickest wordlists update. 2024-04-09 00:19:29 +00:00
GitHub Action
52e9ed1ac8 [Github Action] Automated trickest wordlists update. 2024-04-08 00:19:41 +00:00
GitHub Action
7e6e0ef15c [Github Action] Automated trickest wordlists update. 2024-04-07 00:21:45 +00:00
GitHub Action
ee33c6e1b7 [Github Action] Automated trickest wordlists update. 2024-04-06 00:18:21 +00:00
g0tmi1k
834cee13d0
Merge pull request #979 from molangning/patch-pwdb 
Imported and cleaned ignis-sec/Pwdb-Public

Source: https://github.com/ignis-sec/Pwdb-Public
 2024-04-05 15:32:48 +01:00
g0tmi1k
8c30d6b5c4
Merge pull request #982 from adeadfed/master 
Add new dictionary for Windows LFI fuzzing


Source: https://adeadfed.com/posts/testing-lfi-in-windows-how-i-never-got-a-30000-bounty/

> The `.` at the EOL is not a mistake
> This is done as an attempt to bypass filters by abusing Windows path normalization(1,2,3) (see https://github.com/danielmiessler/SecLists/pull/982 )
 2024-04-05 15:31:26 +01:00
g0tmi1k
d11b83a199
Merge pull request #994 from righettod/ntlm_directories_add 
Add a dict with common NTLM directories

Source: https://github.com/nyxgeek/ntlmscan

```
$ curl -sk https://raw.githubusercontent.com/nyxgeek/ntlmscan/master/paths.dict | cut -c 2- | sort -u
_windows/default.aspx?ReturnUrl=/
```
 2024-04-05 15:29:40 +01:00
g0tmi1k
abae3092df
Merge pull request #995 from molangning/patch-1 
Quick typo fix
 2024-04-05 15:28:49 +01:00
g0tmi1k
68ebc872de
Merge pull request #997 from molangning/patch-2 
Update validators.py
 2024-04-05 15:27:11 +01:00
g0tmi1k
e9337bebcf
Merge pull request #999 from ItsIgnacioPortal/RouterCredentials 
feat(passwords): Added router default users and passwords

Source: https://portforward.com/

```
import os
from bs4 import BeautifulSoup

invalidValues = ["none", "N/A", "blank", "user created", "password changes when reset", "none; created during initial setup", "PrintedOnRouterLabel", "provided by ISP"]
invalidKeywords = ["none", "leave blank", "n/a", "blank", "found by", "found on", "printed on", "configured during", "create", "last", "located", "on ", "sticker on", "refer to"]

def extract_credentials(file_path):
	with open(file_path, 'r') as file:
		content = file.read()
		soup = BeautifulSoup(content, 'html.parser')
		table = soup.find('table')
		if table:
			model = table.find('th').text.strip().lower().replace('model', '').strip().replace(' ', '-').replace('/', '-')
			usernames = set()
			passwords = set()
			for row in table.find_all('tr')[1:]:
				cols = row.find_all('td')
				username = cols[1].text.strip()
				password = cols[2].text.strip()

				if username not in invalidValues:
					addUsername = True
					tempusername = username.lower()

					for keyword in invalidKeywords:
						if tempusername.startswith(keyword):
							addUsername=False
							break

					if addUsername:
						usernames.add(username)

				if password not in invalidValues:
					addPassword = True
					temppassword = password.lower()
					for keyword in invalidKeywords:
						if temppassword.startswith(keyword):
							addPassword=False
							break

					if addPassword:
						passwords.add(password)

			return model, sorted(usernames), sorted(passwords)
		else:
			return None, None, None

def save_credentials(model, usernames, passwords, output_dir):
	if model and usernames and passwords:
		user_file_path = os.path.join(output_dir, f'{model}_default-users.txt')
		pass_file_path = os.path.join(output_dir, f'{model}_default-passwords.txt')
		with open(user_file_path, 'w') as user_file:
			user_file.write('\n'.join(usernames))
		with open(pass_file_path, 'w') as pass_file:
			pass_file.write('\n'.join(passwords))

def process_files(input_dir, output_dir):
	for file_name in os.listdir(input_dir):
		print(f'Processing file {file_name}')
		file_path = os.path.join(input_dir, file_name)
		model, usernames, passwords = extract_credentials(file_path)
		save_credentials(model, usernames, passwords, output_dir)

# Input directory containing the text files
input_dir = "C:\\Users\\User\\Desktop\\out\\portforward.com"
# Output directory where the output files will be saved
output_dir = "C:\\Users\\User\\Github\\SecLists\\Passwords\\Default-Credentials\\Routers"
process_files(input_dir, output_dir)
```
 2024-04-05 15:26:08 +01:00
g0tmi1k
babab451e7
Merge pull request #1001 from molangning/patch-issues-template 
Changed issues templates
 2024-04-05 15:24:06 +01:00
g0tmi1k
4bca650afa
Merge pull request #1002 from molangning/patch-contributing-guidelines 
Added more specifications
 2024-04-05 15:23:11 +01:00
g0tmi1k
0fd0f18fb6
Merge pull request #1003 from molangning/patch-normalise-line-endings 
Normalised line endings
 2024-04-05 15:22:24 +01:00
GitHub Action
9385914f42 [Github Action] Automated readme update. 2024-04-05 14:21:59 +00:00
g0tmi1k
48aaf83f4a
Merge pull request #1004 from molangning/patch-normalise-folders 
Rename folders
 2024-04-05 15:20:52 +01:00
g0tmi1k
d15e6a4545
Merge pull request #990 from 0xjams/CVE-2023-51442 
Added a JWT key used in CVE-2023-51442

Source: https://github.com/advisories/GHSA-wq59-4q6r-635r
 2024-04-05 15:19:40 +01:00
Mo Langning
73f78c4133 Rename folders 2024-04-05 10:42:21 +00:00
Mo Langning
c6fa73c975 Normalised line endings 2024-04-05 10:26:17 +00:00
Mo Langning
6b4504b9df Added more specifications 2024-04-05 10:19:41 +00:00
Mo Langning
d9dd80b90a Changed templates 2024-04-05 10:12:47 +00:00
Ignacio J. Perez Portal
c84fcf055b
chore: Wording 2024-04-05 04:03:05 -03:00
Ignacio J. Perez Portal
9c80d344e1
chore: Fixed typo in router default-passwords README.md 2024-04-05 04:02:43 -03:00
Ignacio J. Perez Portal
fff4d42b5f feat(passwords): Added router default users and passwords 
sources:
- https://portforward.com/
 2024-04-05 03:40:32 -03:00
Mo Langning
8b020ac007
Update validators.py 2024-04-05 10:00:33 +08:00
Mo Langning
5433460af5
Update validators.py 2024-04-05 08:28:04 +08:00
GitHub Action
997dca7afc [Github Action] Automated trickest wordlists update. 2024-04-05 00:19:24 +00:00
GitHub Action
2b62bd209c [Github Action] Automated trickest wordlists update. 2024-04-04 00:19:44 +00:00
Mo Langning
cc0d910d95
Quick typo fix 2024-04-03 11:47:07 +08:00
GitHub Action
0392ab9020 [Github Action] Automated trickest wordlists update. 2024-04-03 00:18:58 +00:00
GitHub Action
e4cf8df21e [Github Action] Automated trickest wordlists update. 2024-04-02 00:19:04 +00:00
GitHub Action
4414aa3885 [Github Action] Automated trickest wordlists update. 2024-04-01 00:21:29 +00:00
Ignacio J. Perez Portal
644238c35c fix: Removed windows-incompatible content 2024-03-31 17:02:18 -03:00
GitHub Action
b182418f05 [Github Action] Automated trickest wordlists update. 2024-03-31 00:21:32 +00:00
Dominique RIGHETTO
f4d9bb68e3
Remove empty line 2024-03-30 17:43:46 +01:00
Dominique RIGHETTO
14a48970a1
Create ntlm-directories.txt 2024-03-30 17:28:41 +01:00
GitHub Action
3373154baf [Github Action] Automated readme update. 2024-03-30 16:08:57 +00:00
GitHub Action
dab4605103 [Github Action] Automated trickest wordlists update. 2024-03-30 00:18:07 +00:00
GitHub Action
ed8889f809 [Github Action] Updated combined_directories.txt 2024-03-29 19:31:14 +00:00
Daniel Miessler
4584fc4647 Removed offensive/harmful entries in files. 2024-03-29 12:29:53 -07:00
GitHub Action
bb68e733f6 [Github Action] Automated trickest wordlists update. 2024-03-29 00:18:55 +00:00
GitHub Action
0daf37370d [Github Action] Automated trickest wordlists update. 2024-03-28 00:19:16 +00:00
GitHub Action
e695f8fa28 [Github Action] Automated trickest wordlists update. 2024-03-27 00:18:34 +00:00
GitHub Action
6f5d949314 [Github Action] Automated trickest wordlists update. 2024-03-26 00:18:29 +00:00
Jorge Morán
60c34e20a5 Added a JWT key used in CVE-2023-51442 2024-03-25 13:40:09 -05:00
GitHub Action
70b13499d5 [Github Action] Automated trickest wordlists update. 2024-03-25 00:19:57 +00:00
GitHub Action
66ebb6457f [Github Action] Automated trickest wordlists update. 2024-03-24 00:21:16 +00:00