{"id":15034811,"url":"https://github.com/gh0stkey/web-fuzzing-box","last_synced_at":"2026-01-27T19:03:55.461Z","repository":{"id":37344785,"uuid":"326013448","full_name":"gh0stkey/Web-Fuzzing-Box","owner":"gh0stkey","description":"Web Fuzzing Box - Web 模糊测试字典与一些Payloads","archived":false,"fork":false,"pushed_at":"2024-12-11T06:39:05.000Z","size":84010,"stargazers_count":2200,"open_issues_count":0,"forks_count":375,"subscribers_count":33,"default_branch":"main","last_synced_at":"2025-01-31T09:13:02.661Z","etag":null,"topics":["bugbounty","fuzz","fuzzing","hacking","penetration-testing","pentesting"],"latest_commit_sha":null,"homepage":"","language":"HTML","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/gh0stkey.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-01-01T16:21:16.000Z","updated_at":"2025-01-30T17:58:39.000Z","dependencies_parsed_at":"2024-06-14T10:38:07.248Z","dependency_job_id":null,"html_url":"https://github.com/gh0stkey/Web-Fuzzing-Box","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gh0stkey%2FWeb-Fuzzing-Box","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gh0stkey%2FWeb-Fuzzing-Box/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gh0stkey%2FWeb-Fuzzing-Box/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gh0stkey%2FWeb-Fuzzing-Box/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/gh0stkey","download_url":"https://codeload.github.com/gh0stkey/Web-Fuzzing-Box/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245608100,"owners_count":20643460,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","fuzz","fuzzing","hacking","penetration-testing","pentesting"],"created_at":"2024-09-24T20:26:25.683Z","updated_at":"2026-01-27T19:03:55.456Z","avatar_url":"https://github.com/gh0stkey.png","language":"HTML","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Web-Fuzzing-Box\n\nWeb Fuzzing Box - Web 模糊测试字典与一些Payloads，主要包含：弱口令暴力破解、目录以及文件枚举、Web漏洞...\n\n字典运用于实战案例：\nhttps://gh0st.cn/archives/2019-11-11/1\nhttps://gh0st.cn/archives/2018-07-25/1\n\n参数、目录、文件名等相关数据部分来源于CaA项目：\nhttps://github.com/gh0stkey/CaA\n\n```shell\n❯ tree -L 2\n.\n├── Brute [爆破]\n│   ├── Chinese_Hacker_Id.txt [黑客ID字典]\n│   ├── Application [服务、应用字典]\n│   ├── Basic_401_Login.txt [401认证字典]\n│   ├── Full_Name [姓名拼音字典]\n│   ├── Password [密码字典]\n│   ├── Ports [端口字典]\n│   ├── Security_Product [安全产品]\n│   ├── Subdomain [子域名]\n│   ├── Top_Password [Top排名字典]\n│   ├── Test_Chinese_Mobilephonenumber.txt [测试手机号字典]\n│   └── Username [用户名字典]\n\n├── Dir [目录、文件名、接口]\n│   ├── Others [其他字典]\n│   ├── Burpsuite [适用于BurpSuite的字典]\n│   ├── Wooyun [乌云历史漏洞目录、文件字典]\n│   └── Yujian [中国御剑字典]\n\n├── Vuln [漏洞相关字典]\n│   ├── Api_Bypass [Api漏洞：绕过403、鉴权绕过]\n│   ├── File_Upload [文件上传漏洞]\n│   ├── Logic [逻辑漏洞]\n│   ├── File_Include [文件包含字典]\n│   ├── Image_Dos [图片资源导致的DoS拒绝服务漏洞字典]\n│   ├── Jsonp [JSONP跨域劫持漏洞字典]\n│   ├── Open_Redirect [URL跳转漏洞字典]\n│   ├── Sql_Injection [SQL注入字典]\n│   ├── Traversal_Directory [遍历目录漏洞字典]\n│   ├── Xml_Bomb [XML炸弹Payloads]\n│   └── Xss [XSS字典与Payloads]\n\n├── Other [其他字典]\n│   ├── 2W_Words.txt\n│   └── 各省市手机号号段\n\n└── Web [Web测试字典]\n    ├── File_Path [一些文件及路径]\n    ├── Funcation_Name.txt [函数名]\n    ├── HTML [HTML相关]\n    ├── Headers [HTTP头]\n    ├── Http_Methods.txt [HTTP请求方式]\n    ├── Integer_Overflows.txt [整数溢出]\n    ├── Javascript_Filename.txt [JavaScript文件名]\n    ├── Lcoalhost.txt [本地地址]\n    ├── Dict [动名词字典、请求参数类]\n    ├── URL [URL相关协议和类型]\n    └── ViewState_Key.txt [用于ViewState反序列化]\n```\n\n## 致谢\n\n[远海](https://github.com/yuanhaiGreg): 贡献文件上传参数、ViewState_Key","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgh0stkey%2Fweb-fuzzing-box","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgh0stkey%2Fweb-fuzzing-box","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgh0stkey%2Fweb-fuzzing-box/lists"}