directory and files payload-list

License contributions welcome Twitter

Proviesec logo Buy Me A Coffee

Introduction

⭐ Star us on GitHub — it motivates a lot! ⭐

If you have any Directory or files payload, just create a PullRequest.

how to use

Use my appropriate tool for this https://github.com/Proviesec/PSFuzz

Ideas

  • WordPress directory list
  • git directory list
  • Admindirectory list
  • Grafana dir list
  • Joomla dir list
  • Wordpress dir list
  • Phpinfo dir list
  • Symfony dir list
  • top dir list
  • Config file dir list
  • phpMyAdmin dir list
  • Magento directory list
  • htaccess dir list
  • dir list
  • Appropriate response for the respective directory or file

The Bug Bounty unhelpful files and folders list

robots.txt
index.html
error.html

Example

image

Reports

https://hackerone.com/reports/1358249 https://hackerone.com/reports/1118898 https://hackerone.com/reports/1358249 https://hackerone.com/reports/1049402 https://hackerone.com/reports/1164854 https://hackerone.com/reports/1417288 https://hackerone.com/reports/1704035

How To

https://github.com/ffuf/ffuf

Writeups

https://blog.infiltrateops.io/tesla-paid-me-10-000-because-of-directory-indexing-c1be06c77a3e https://infosecwriteups.com/how-i-was-able-to-bypass-the-admin-panel-without-the-credentials-d65f90e0e1e4