Skip to content

Commit

Permalink
Merge pull request #827 from ItsIgnacioPortal/dsstore
Browse files Browse the repository at this point in the history 
Added dsstorewordlist.txt
  • Loading branch information
@g0tmi1k
g0tmi1k authored Mar 9, 2023
2 parents d438c31 + c859bc7 commit 4a697df
Show file tree
Hide file tree
Showing 2 changed files with 1,836 additions and 1 deletion.
9 changes: 8 additions & 1 deletion Discovery/Web-Content/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,14 @@ This list is a combination of the following wordlists:
- raft-small-directories-lowercase.txt
- raft-small-directories.txt

## dsstorewordlist.txt

SOURCE: https://github.com/aels/subdirectories-discover

Perfect wordlist to discover directories and files on target site with tools like ffuf.
- It was collected by parsing Alexa top-million sites for **.DS_Store** files (https://en.wikipedia.org/wiki/.DS_Store), extracting all the found files, and then extracting found file and directory names from around 300k real websites.
- Then sorted by probability and removed strings with one occurrence.
- resulted file you can download is below. Happy Hunting!

## WEB-INF-dict.txt
Use for: discovering sensitive j2ee files exploiting a lfi
Expand All @@ -45,4 +53,3 @@ References:
- https://gist.github.com/harisec/519dc6b45c6b594908c37d9ac19edbc3
- https://github.com/projectdiscovery/nuclei-templates/blob/master/vulnerabilities/generic/generic-j2ee-lfi.yaml
- https://github.com/ilmila/J2EEScan/blob/master/src/main/java/burp/j2ee/issues/impl/LFIModule.java

Loading

0 comments on commit 4a697df

Please sign in to comment.