Rockyou for web fuzzing
This is a projectt to generate huge wordlists for web fuzzing, if you just want to fuzz with a good wordlist use the file onelistforallmicro.txt.
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ- Git clone and extract:
git clone https://github.com/six2dez/OneListForAll && cd OneListForAll
7z x onelistforall.7z.001- Fuzz with the best tool ffuf :)
ffuf -c -w onelistforall.txt -u [target.com]/FUZZBuild your own wordlists!
-
Add your wordlists to dict/ folder with suffix _short.txt for short wordlist and _long.txt for the full wordlist.
-
Run ./olfa.sh (olfa -> One List For All) and you will have onelistforall.txt file and onelistforallshort.txt.
-
Fuzz with the best tool ffuf :)
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ- onelistforall.txt basically everything, launch it and go to sleep. 6950906 lines, 113M
- onelistforallshort.txt a shortened version, it also contains a lot of things, but in a more affordable way: 396038 lines, 5.6M
- onelistforallmicro.txt almost 10K lines of the best paths you can find, just juicy and important stuff: 9688 lines, 141K
This is a wordlist for fuzzing purposes made from the best wordlists currently available, lowercased and deduplicated later with duplicut, added cleaner from BonJarber. The lists used have been some selected within these repositories:
- fuzzdb
- SecLists
- xmendez
- minimaxir
- TheRook
- danielmiessler
- swisskyrepo
- 1N3
- cujanovic
- lavalamp
- ics-default
- jeanphorn
- j3ers3
- nyxxxie
- dirbuster
- dotdotpwn
- hackerone_wordlist
- commonspeak2
- bruteforce-list
- assetnote
Feel free to contribute, PR are welcomed.