Skip to content

Latest commit

 

History

History
77 lines (73 loc) · 25.3 KB

CONTRIBUTORS.md

File metadata and controls

77 lines (73 loc) · 25.3 KB

Thanks

  • Adam Muntner (@amuntner) and for the FuzzDB content, including all authors from the FuzzDB project (https://github.com/fuzzdb-project/fuzzdb) [./Fuzzing/*.fuzzdb.txt]
  • Ron Bowes (@iagox86) of SkullSecurity for collaborating and including all his lists here (https://wiki.skullsecurity.org/Passwords)
  • Clarkson University for their research that led to the Clarkson password list [./Passwords/clarkson-university-82.txt]
  • All the authors listed in the XSS with context doc, which was found on pastebin and added to by us
  • Ferruh Mavitina for the beginnings of the LFI Fuzz list
  • Kevin Johnson for Laudanum shells (https://sourceforge.net/projects/laudanum/) [./Web-Shells/laudanum-0.8/]
  • RSnake for fierce DNS hostname list [./Discovery/DNS/fierce-hostlist.txt]
  • Charlie Campbell for Spanish word list, numerous other contributions
  • Rob Fuller (@mubix) for the IZMY list [./Passwords/Leaked-Databases/izmy.txt]
  • Mark Burnett for the 10 million passwords list
  • Steve Crapo for doing splitting work on a number of large lists
  • Thanks to Blessen Thomas for recommending Mario's/cure53's XSS vectors
  • Thanks to Danny Chrastil for submitting an anonymous JSON fuzzing list
  • Many thanks to @geekspeed, @EricSB, @lukebeer, @patrickmollohan, @g0tmi1k, @albinowax, and @kurobeats for submitting via pull requests
  • Special thanks to @shipCod3 for MANY contributions and for a SSH user/pass list
  • Thanks to Samar Dhwoj Acharya for allowing his GitHub Dorks content to be included
  • Thanks to Liam Somerville for the excellent list of default passwords
  • Great thanks to Michael Henriksen for allowing us to include his Gitrob project's signatures
  • Honored to have @Brutelogic's brilliant XSS Cheatsheet added to the Fuzzing section [./Fuzzing/XSS*-BruteLogic.txt]
  • 0xsobky's Ultimate XSS Polyglot [./Fuzzing/Polyglots/XSS-Polyglot-Ultimate-0xsobky.txt]
  • @otih for bruteforce collected user/pass lists [./Passwords/Honeypot-Captures/multiplesources-passwords-fabian-fingerle.de.txt]
  • @govolution for BetterDefaultPassList (https://github.com/govolution/betterdefaultpasslist) [./Passwords/Default-Credentials/*-betterdefaultpasslist.txt]
  • Max Woolf (@minimaxir) for Big List of Naughty Strings (https://github.com/minimaxir/big-list-of-naughty-strings) [./Fuzzing/big-list-of-naughty-strings.txt]
  • Ian Gallagher (@craSH) for HTTP Request Headers [./Miscellaneous/http-request-headers/]
  • Arvind Doraiswamy (@arvinddoraiswamy) for numeric-fields-only [./Fuzzing/numeric_fields_only.txt]
  • @badibouzouk for Domino Hunter (https://sourceforge.net/projects/dominohunter/) [./Discovery/Web-Content/Domino-Hunter/]
  • @coldfusion39 for domi-owned (https://github.com/coldfusion39/domi-owned) [./Discovery/Web-Content/domino-*-coldfusion39.txt]
  • Ella Rose (@erose1337) for security-question-answers (https://github.com/erose1337/penetration_testing/tree/master/data) [./Miscellaneous/security-question-answers/]
  • @D35m0nd142 for LFISuite (https://github.com/D35m0nd142/LFISuite) [./Fuzzing/LFI-LFISuite-pathtotest*.txt]
  • @chrislockard for api_wordlist (https://github.com/chrislockard/api_wordlist) [./Discovery/Web-Content/api/]
  • @drwetter for adding .well-known, see RFC 8615 + IANA registry https://www.iana.org/assignments/well-known-uris/well-known-uris.xhtml [./Discovery/Web-Content/common.txt]
  • Davide Girardi (@nogonosa) for adding List of IBM CICS transactions, (https://www.ibm.com/support/knowledgecenter/SSGMCP_5.4.0/reference/transactions/dfha726.html) [./Discovery/Mainframe/default_cics_transactions.txt]
  • @leonjza for adding WordPress-Shell (https://github.com/leonjza/wordpress-shell/) [./Web-Shells/WordPress/plugin-shell.php]
  • @streaak for keyhacks [./Miscellaneous/web/keyhacks-api.md]

This project stays great because of care and love from the community, and we will never forget that. If you know of a contribution that is not listed above, please let us know...



g0tmi1k

danielmiessler

jhaddix

toxydose

righettod

shipcod3

govolution

mcjon3z

semprix

erose1337

leesoh

drwetter

Rbcafe

alexlauerman

kazkansouh

TAbdiukov

clem9669

noraj

ericrange

tkisason

tomcodes

s7x

PaulSec

ArgentEnergy

whoot

ricardojba

s0md3v

soufianetahiri

XalfiE

ethicalhack3r

realArcherL

shelld3v

n3k00n3

its0x08

kurobeats

Beverdam

camas

dee-see

jebentier

albinowax

storenth

Lavaei

PinkDraconian

q-analysis

henshin

charliecampbell-zz

j0hnf

pbafe

redstonedesigner

xrobhal

hisxo

bkimminich

haxxinen

craSH

nsonaniya2010

0verflowme

TheSerialiZator

acaetano

xpirt

radarhere

aguilbau

Glassware123

arjunshibu

berzerk0

caioluders

Floppynator

cnotin

CoccodrillooXDS

lc

CyDoor

GovindPalakkal

daehee

danrneal

DarrenRainey

denzuko

fiLLLip

francisuk1989

giomke

ilyaglow

IndiNijhof

0xInfection

vortexau

IAmATeaPot418

JensTimmerman

0xJs

qurbat

LabanSkollerDefensify

LethargicLeprechaun

stuntguy3000

Paradoxis

chokeee

Martin407

brimstone

mazen160

melardev

mbiert

michenriksen

mwoolweaver

mrajput7

MusicGivesMeLife

Natfan

nkakouros

ngkogkos

parthmalhotra

Prinzhorn

ryan-wendel

upgoingstar

SolomonSklash

shoeper

Techbrunch

CanardMandarin

wasamasa

vinnytroia

VitalySalnikov

mswell

kongwenbin

Zawadidone

aayushsonu

ajazevedo

AlionGreen

api0cradle

bugbounty69

cactuschibre

chudyPB

davidegirardi

viksecurity

dotan3

espreto

frite

guest20

henry701

hitericcow

ipentest

jakobhuss

jaweesh

jhsware

joegoerlich

Kegn

lukebeer

0x6c7862

m4p0

mathieu-aubin

maxence-schmitt

milangfx

muhammedck113

mxrch

NeuronAddict

objectified

om3rcitak

oh6hay

reydc

rf-peixoto

rik43

sheimo

socketz

t0-git

tehmoon

vulf

0x90shell

waawaa