# fuzzDicts **Repository Path**: cysec/fuzzDicts ## Basic Information - **Project Name**: fuzzDicts - **Description**: Web Pentesting Fuzz 字典,一个就够了。 - **Primary Language**: Python - **License**: Not specified - **Default Branch**: master - **Homepage**: None - **GVP Project**: No ## Statistics - **Stars**: 1 - **Forks**: 1 - **Created**: 2020-05-26 - **Last Updated**: 2021-07-25 ## Categories & Tags **Categories**: Uncategorized **Tags**: None ## README # fuzzDicts Web Pentesting Fuzz 字典,一个就够了。 * [参数Fuzz字典](#参数fuzz字典) * [Xss Fuzz字典](#xss-fuzz字典) * [用户名字典](#用户名字典) * [密码字典](#密码字典) * [目录字典](#目录字典) * [sql-fuzz字典](#sql-fuzz字典) * [ssrf-fuzz字典](#ssrf-fuzz字典) * [XXE字典](#XXE字典) * [ctf字典](#ctf字典) * [Api字典](#Api字典) 工具推荐:[burpsuite](https://portswigger.net/burp/),[sqlmap](https://github.com/sqlmapproject/sqlmap),[xssfork](https://github.com/bsmali4/xssfork),[Wfuzz](https://github.com/xmendez/wfuzz/),[webdirscan](https://github.com/TuuuNya/webdirscan) ## [参数Fuzz字典](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/paramDict) ``` https://github.com/TheKingOfDuck/fuzzDicts/blob/master/paramDict/parameter.txt ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/parameter.jpg) 采集自`ThinkPHP`,`yii2`,`phphub`,`Zblog`,`DiscuzX`,`WordPress`等常见PHP框架/CMS。 ## [Xss Fuzz字典](https://github.com/TheKingOfDuck/easyXssPayload/blob/master/easyXssPayload.txt) ``` https://github.com/TheKingOfDuck/easyXssPayload/blob/master/easyXssPayload.txt ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/xss.jpg) 采集自`github`。 ## [用户名字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/userNameDict) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/userNameDict ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/username.jpg) ## [密码字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/passwordDict) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/passwordDict ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/password.jpg) ## [目录字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/directoryDicts) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/directoryDicts ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/directory.jpg) ## [SQL Fuzz字典](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/sqlDict/sql.txt) ``` https://github.com/TheKingOfDuck/fuzzDicts/blob/master/sqlDict/sql.txt ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/sql.jpg) ## [ssrf fuzz字典](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/ssrfDicts) ``` https://github.com/TheKingOfDuck/fuzzDicts/blob/master/ssrfDicts ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/ssrf.jpg) 由[\xeb\xfe](https://github.com/doge-dog)师傅提供。 ## [XXE字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/XXEDicts) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/XXEDicts ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/xxe.jpg) 收集自百度。 ## [ctf字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/ctfDict) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/ctfDict ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/ctfDict/ctf-wscan/1.gif) 收集自百度[侵删]。 ## [Api字典](https://github.com/TheKingOfDuck/fuzzDicts/tree/master/apiDict) ``` https://github.com/TheKingOfDuck/fuzzDicts/tree/master/apiDict/api.txt ``` ![CoolCat](https://github.com/TheKingOfDuck/fuzzDicts/blob/master/images/api.jpg) 钟馗采集的代码写得很cxk 我真弟弟。。。