Local File Inclusion (LFI)
Insecure File Upload
Insecure Direct Object Reference (IDOR)
SQL Injection (SQLi)
Cross-Site Scripting (XSS)
Server Side Request Forgery (SSRF)
Server Side Template Injection (SSTI)
XML External Entity (XXE)
John the Ripper
Set of dictionaries for cracking hashes
GitHub - kaonashi-passwords/Kaonashi: Wordlist, rules and masks from Kaonashi project (RootedCON 2019)
Kaonashi - Wordlist, rules and masks from Kaonashi project (RootedCON 2019)
SecLists/Passwords at master · danielmiessler/SecLists
SecLists - Collection of multiple types of lists used during security assessments
Weakpass - Passwords collections
GitHub - NSAKEY/nsa-rules: Password cracking rules and masks for hashcat that I generated from cracked passwords.
NSA Rules - Password cracking rules and masks for hashcat
GitHub - NotSoSecure/password_cracking_rules: One rule to crack all passwords. or atleast we hope so.
OneRuleToRuleThemAll - One rule to crack all passwords.
Kaonashi/rules at master · kaonashi-passwords/Kaonashi
OTHER - Previous