Become an AceSign inSign up
six2dez/ OneListForAll (v2.3) 3 months ago
Shell fuzzing pentesting wordlist
View on GitHub
Need help with OneListForAll?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

six2dez
183 Stars 33 Forks 36 Commits 0 Opened issues

Description

Rockyou for web fuzzing

Services available

!
?

Need anything else?

Contributors list

six2dez six2dez
# 42,437
HTML
Shell
Lua
attacks
 34 commits

OneListForAll

Rockyou for web fuzzing

V2 released! Now you can build your own wordlists with the same method and this release includes a short wordlist. Base wordlists provided in /dict folder. See Method 3

V2.3 released! Added custom curated list "onelistforallmicro.txt", almost 10K lines for quick wins and fast enum process. This new wordlist is not created from other sources is handcrafted.

Usage

Method 1

  1. Go to releases and download

  2. Fuzz with the best tool ffuf :) 

    bash
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ

Method 2

  1. Git clone and extract: 
    bash
git clone https://github.com/six2dez/OneListForAll && cd OneListForAll
7z x onelistforall.7z.001
  2. Fuzz with the best tool ffuf :) 
    bash
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ

Method 3

Build your own wordlists!

  1. Add your wordlists to dict/ folder with suffix _short.txt for short wordlist and _long.txt for the full wordlist.

  2. Run ./olfa.sh (olfa -> One List For All) and you will have onelistforall.txt file and onelistforallshort.txt.

  3. Fuzz with the best tool ffuf :) 

    bash
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ

Wordlists summary

  • onelistforall.txt basically everything, launch it and go to sleep. 6950906 lines, 113M
  • onelistforallshort.txt a shortened version, it also contains a lot of things, but in a more affordable way: 396038 lines, 5.6M
  • onelistforallmicro.txt almost 10K lines of the best paths you can find, just juicy and important stuff: 9688 lines, 141K

Sources

This is a wordlist for fuzzing purposes made from the best wordlists currently available, lowercased and deduplicated later with duplicut, added cleaner from BonJarber. The lists used have been some selected within these repositories:

Feel free to contribute, PR are welcomed.

You can support this work buying me a coffee:

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.