password dictionarypenetration testDictionary Burst Dictionary
Download: /b00n7iwqh
Download 2.github.com/ddosi/hack
Password.
Decryption code.
The following figure lists four random password dictionaries from the fuzz dictionary
The dictionary consists mainly of the following.
# Content:
1. Port # The port number that occurs more often, usually I useTelnetto scan for ports, there is no line feed for each port number.
2. User # is mainly some user passwords collected from the network.
/IDC_password/ # IDC Burst Password
/User_name/ # User name
/User_password/ # user_password
3. Web_Middleware_other # Some middleware, databases, operating systems
/db2/ # db2 blasting
/generic/
/oracle/ # generic-listpairs bursting
/postgres/ # postgres blasting
/tomcat/ # tomcat blasting
/unix-os/ # unix bursting
/phpbb/ # phpbb blasting
/userAgents/ # useragent
4. protocol_password # protocol Example: SNMP
5. Xss_payload # Some Xss payloads
6. Sessionid # Sessionid dictionary
7. Errors # Some error messages. ps: database, middleware, etc.
8. Subdomains # Subdomains. ps: This dictionary should be a foreigner's dictionary.
/CcTLD/ # CcTLD
/gTLD/ # gTLD
/Subdomains_En/ # Common subdomains. PS: This stuff only works in fits and starts, it's not very complete.
9. Fuzz # Some Fuzz content. ps: json, xml, callback, etc. There are too many contents in it, just look at the file name yourself.
10. web_shell # Some webshells, common passwords, and paths.
11. Xss_payload # Xss paylod。
12. Path # File name, suffix, path, etc.
13. Other # Other content. ps: mainly foreigners
14. Patch # Paths, files, etc.
Explo1t Dict
│
├─Errors
│
│
├─Fuzz
│
│
│
│
│
│
│
│
│
│ callback_dict.txt
│
│
│
│
│
│
│
│
│
│
│
│
│
│ debug_param_name.txt
│
│
│
│
│
│
│
│
│ full_hex.txt
│
│
│
│
│
│
│ image_size.txt
│
│
│
│
│ JSON_Fuzzing.txt
│
│
│
│
│
│
│
│
│
│
│
│
│
│
│
│
│
│ Url_redirct.txt
│
│
│
│
│
│
│
│
├─Other
│
│
│
│
│
│
├─Patch
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │ dir_big.txt
│ │ Fck Editor.txt
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │
│ │ Backdoor Scan.txt
│ │
│ └─Running Meter
│ Data.txt
│
├─Port
│
│
├─Protocol_password
│ Snmp_password.txt
│
├─Sessionid
│
│
├─Subdomains
│
│
│ Subdomains_En.txt
│
├─User
│ ├─IDC_password
│ │ IDC_password_1.txt
│ │ IDC_password_2.txt
│ │ IDC_password_3.txt
│ │ IDC_password_4.txt
│ │ IDC_password_5.txt
│ │ IDC_password_6.txt
│ │
│ ├─User_name
│ │ China_name.txt
│ │ QQ_Mail.txt
│ │
│ │
│ │
│ │
│ │ User_name_En.txt
│ │ Common
│ │
│ └─User_password
│ 3389 Blast Password.txt
│ Comprehensive_password_10_En.txt
│ Comprehensive_password_11_En.txt
│ Comprehensive_password_1_En.txt
│ Comprehensive_password_2_En.txt
│ Comprehensive_password_3_En.txt
│ Comprehensive_password_4_En.txt
│ Comprehensive_password_5_En.txt
│ Comprehensive_password_6_En.txt
│ Comprehensive_password_7_En.txt
│ Comprehensive_password_8_En.txt
│ Comprehensive_password_9_En.txt
│
│ NT Password.txt
│ passwords_1.txt
│
│ Wail_passwd.txt
│ Weak_password.txt
│ Password.txt
│ Password
│ common_passwd.txt
│ Common Password
│ Common operation and maintenance system user name and password.txt
│
├─Web_Middleware_other
│ │ liunx_users_dictionaries.txt
│ │ weblogic default username, password.txt
│ │
│ ├─db2
│ │ db2_default_pass.txt
│ │ db2_default_user.txt
│ │ db2_default_userpass.txt
│ │
│ ├─generic-listpairs
│ │ http_default_pass.txt
│ │ http_default_userpass.txt
│ │ http_default_users.txt
│ │
│ ├─oracle
│ │ oracle_logins.txt
│ │ oracle_login_password.txt
│ │ oracle_passwords.txt
│ │ _hci_oracle_passwords.txt
│ │ _oracle_default_passwords.txt
│ │
│ ├─phpbb
│ │
│ │
│ ├─postgres
│ │ postgres_default_pass.txt
│ │ postgres_default_user.txt
│ │ postgres_default_userpass.txt
│ │
│ ├─tomcat
│ │ tomcat_mgr_default_pass.txt
│ │ tomcat_mgr_default_userpass.txt
│ │ tomcat_mgr_default_users.txt
│ │
│ ├─unix-os
│ │ unix_passwords.txt
│ │ unix_users.txt
│ │
│ └─userAgents
│
│
├─Web_shell
│
│
│ webshell common password.txt
│
└─Xss_payload
default-javascript-
JHADDIX_XSS_WITH_CONTEXT.