seclists @ blackhat arsenal 2015
TRANSCRIPT
SecListsThe pentester’s companion
Why SecLists
Integrations
✓ Burp ✓ Kali ✓ Other distros ✓ Other tools
Contribution
✓ Submit via GitHub ✓ Submit via pull request ✓ Submit lists ✓ Submit recommendations ✓ Flame
Attribution
✓ Kali ✓ Burp, ZAP ✓ Expanding Polyglots ✓ Expanding magic strings ✓ Expanding DOM XSS lists ✓ Dangerous functions ✓ SSRF file handlers ✓ Killer scripts ✓ NetSec lists / syntax / etc ✓ net use, nmap, tcpdump,
psexec, metasploit, sqlmap, hydra, medusa, ncrack, netstat,ncat, ,
project++
SecListsThe pentester’s companion
SecListsThe pentester’s companion
✓ https://github.com/danielmiessler ✓ @danielmiessler ✓ [email protected]
✓ https://github.com/jhaddix ✓ @jhaddix ✓ [email protected]
https://github.com/danielmiessler/SecLists