A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters

• AwesomeXSS

  2 4,668 2.7 JavaScript

  Awesome XSS stuff

AwesomeXSS https://github.com/s0md3v/AwesomeXSS

• PayloadsAllTheThings

  34 57,357 8.5 Python

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

payload https://github.com/swisskyrepo/PayloadsAllTheThings

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• big-list-of-naughty-strings

  41 45,921 0.0 Python

  The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

• fuzz.txt

  1 2,807 6.2

  Potentially dangerous files

• fuzzdb

  4 8,001 0.0 PHP

  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

  

FuzzDB https://github.com/fuzzdb-project/fuzzdb

• dictionaries

  1 222 4.7 Python

  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks (by bl4de)

• Open-Redirect-Payloads

  1 542 10.0 Shell

  Open Redirect Payloads

payload https://github.com/cujanovic/Open-Redirect-Payloads

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• bugbounty-cheatsheet

  3 5,589 0.0

  A list of interesting payloads, tips and tricks for bug bounty hunters.

• xss-payload-list

  6 5,759 0.0

  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

  

• WordList

  1 543 3.9 PHP

• Bug-Bounty-Wordlists

  2 1,039 0.8

  A repository that includes all the important wordlists used while bug hunting.

• OneListForAll

  1 2,388 5.6 Shell

  Rockyou for web fuzzing

Suggest a related project