OneListForAll: Rockyou wordlists for web fuzzing
OneListForAll
Rockyou for web fuzzing
Wordlists summary
- onelistforall.txt basically everything, launch it, and go to sleep. 6950906 lines, 113M
- onelistforallshort.txt a shortened version, it also contains a lot of things, but in a more affordable way: 396038 lines, 5.6M
- onelistforallmicro.txt almost 10K lines of the best paths you can find, just juicy and important stuff: 9688 lines, 141K
Sources
This is a wordlist for fuzzing purposes made from the best wordlists currently available, lowercased and deduplicated later with duplicut, added cleaner from BonJarber. The lists used have been some selected within these repositories:
- fuzzdb
- SecLists
- xmendez
- minimaxir
- TheRook
- danielmiessler
- swisskyrepo
- 1N3
- cujanovic
- lavalamp
- ics-default
- jeanphorn
- j3ers3
- nyxxxie
- dirbuster
- dotdotpwn
- hackerone_wordlist
- commonspeak2
- bruteforce-list
- assetnote
V2 released! Now you can build your own wordlists with the same method and this release includes a short wordlist. Base wordlists provided in /dict folder. See Method 3
V2.3 released! Added custom curated list “onelistforallmicro.txt”, almost 10K lines for quick wins and fast enum process. This new wordlist is not created from other sources is handcrafted.
Usage
Method 1
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ
Method 2
- Git clone and extract:
git clone https://github.com/six2dez/OneListForAll && cd OneListForAll
7z x onelistforall.7z.001
- Fuzz with the best tool ffuf 🙂
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ
Method 3
Build your own wordlists!
- Add your wordlists to the dict/ folder with suffix _short.txt for the short wordlist and _long.txt for the full wordlist.
- Run ./olfa.sh (olfa -> One List For All) and you will have onelistforall.txt file and onelistforallshort.txt.
- Fuzz with the best tool ffuf 🙂
ffuf -c -w onelistforall.txt -u [target.com]/FUZZ
Source: https://github.com/six2dez/
