{"id":15374446,"url":"https://github.com/ivan-sincek/amounts","last_synced_at":"2025-04-15T11:32:54.995Z","repository":{"id":107018797,"uuid":"436719050","full_name":"ivan-sincek/amounts","owner":"ivan-sincek","description":"Generate a wordlist to fuzz amounts or any other numerical values.","archived":false,"fork":false,"pushed_at":"2024-11-22T17:01:59.000Z","size":13,"stargazers_count":9,"open_issues_count":0,"forks_count":3,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-28T21:01:29.236Z","etag":null,"topics":["brute-force","bug-bounty","currency","dictionary-attack","finance","financial-technology","fuzzing","offensive-security","payments","penetration-testing","prices","python","quality-assurance","quality-control","security","transactions","web-penetration-testing","wordlist-generator"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ivan-sincek.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-12-09T18:21:43.000Z","updated_at":"2025-01-14T19:24:26.000Z","dependencies_parsed_at":"2023-11-25T14:24:07.813Z","dependency_job_id":"6c51bbaf-8847-438d-b2d4-536564ecbd79","html_url":"https://github.com/ivan-sincek/amounts","commit_stats":{"total_commits":2,"total_committers":1,"mean_commits":2.0,"dds":0.0,"last_synced_commit":"91e126b1f57510831efd94264f507f6cf74c8504"},"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ivan-sincek%2Famounts","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ivan-sincek%2Famounts/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ivan-sincek%2Famounts/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ivan-sincek%2Famounts/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ivan-sincek","download_url":"https://codeload.github.com/ivan-sincek/amounts/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249061208,"owners_count":21206468,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["brute-force","bug-bounty","currency","dictionary-attack","finance","financial-technology","fuzzing","offensive-security","payments","penetration-testing","prices","python","quality-assurance","quality-control","security","transactions","web-penetration-testing","wordlist-generator"],"created_at":"2024-10-01T13:58:48.531Z","updated_at":"2025-04-15T11:32:54.986Z","avatar_url":"https://github.com/ivan-sincek.png","language":"Python","readme":"# Amounts\n\nGenerate a wordlist to fuzz amounts or any other numerical values. Based on [Common Security Issues in Financially-Oriented Web Applications](https://soroush.me/downloadable/common-security-issues-in-financially-orientated-web-applications.pdf).\n\nBypass minimum and maximum restrictions, cause an unintended behavior and errors, etc.\n\nWorks with integer and float numerical values.\n\nTests:\n\n* Grouping and separating digits using separators such as space, comma, and dot.\n* Adding leading zeros and trailing decimal zeros using separators such as space and comma.\n* Prepending and appending negative and positive scope.\n* Prepending fiat currency symbols such as `$`, `£`, and `€` with and without negative and positive scope.\n* Adding brackets such as `()`, `[]`, and `{}` and extending the inner elements.\n* Testing overflows, underflows, and infinite values.\n* Testing binary and hexadecimal representations, exponential notations, and byte and Unicode escape sequences.\n* Testing boolean, empty, integer minimum, integer maximum, and other special values.\n* Testing lengths.\n\nPre-generated wordlists can be found in [/src/wordlists/](https://github.com/ivan-sincek/amounts/tree/main/src/wordlists) and also a part of [/danielmiessler/SecLists/tree/master/Fuzzing/Amounts](https://github.com/danielmiessler/SecLists/tree/master/Fuzzing/Amounts).\n\nComplimentary wordlists:\n\n* [/danielmiessler/SecLists/blob/master/Fuzzing/JSON.Fuzzing.txt](https://github.com/danielmiessler/SecLists/blob/master/Fuzzing/JSON.Fuzzing.txt)\n\nTested on Kali Linux v2024.2 (64-bit).\n\nMade for educational purposes. I hope it will help!\n\n## Table of Contents\n\n* [How to Install](#how-to-install)\n\t* [Standard Install](#standard-install)\n\t* [Build and Install From the Source](#build-and-install-from-the-source)\n* [Generate Amounts](#generate-amounts)\n* [Usage](#usage)\n\n## How to Install\n\n### Standard Install\n\n```fundamental\npip3 install --upgrade amounts\n```\n\n### Build and Install From the Source\n\n```fundamental\ngit clone https://github.com/ivan-sincek/amounts \u0026\u0026 cd amounts\n\npython3 -m pip install --upgrade build\n\npython3 -m build\n\npython3 -m pip install dist/amounts-4.2-py3-none-any.whl\n```\n\n## Generate Amounts\n\n```fundamental\namounts -min 1 -max 10000 -mid 2200 -o amounts.txt\n```\n\nGenerate wordlist:\n\n```fundamental\n2 200\n2,200\n2.200\n002200\n2200,00\n2200.00\n-2200\n2200-\n+2200\n2200+\n2200\n$-2200\n-$2200\n$+2200\n+$2200\n$2200\n€-2200\n-€2200\n€+2200\n+€2200\n€2200\n£-2200\n-£2200\n£+2200\n+£2200\n£2200\n()\n(,,)\n(2200)\n(\"2200\")\n(2200,2199)\n(\"2200\",\"2199\")\n[]\n[,,]\n[2200]\n[\"2200\"]\n[2200,2199]\n[\"2200\",\"2199\"]\n{}\n{,,}\n{2200}\n{\"2200\"}\n{2200,2199}\n{\"2200\",\"2199\"}\n0\n10001\n-NaN\n-Infinity\n-inf\nNaN\nInfinity\ninf\n0b100010011000\n0x898\n\\x32\\x32\\x30\\x30\n\\u0032\\u0032\\u0030\\u0030\n2200e0\n2200e-50\n0.00000000000000000000000000000000000000000000002200\n1e-1\n10000e1\n\u0026h00\n\u0026hff\n2,,2,,0,,0\n%20%092200\n2200%20%00%00\ntrue\nfalse\n-1\n+1\n-0\n+0\n0e-1\n0e1\nnull\nNone\nnil\nAn Array\n-2147483648\n2147483647\n-2147483649\n2147483648\n4294967295\n4294967296\n99999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n9999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n-9999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n-999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n-99999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999\n1\n```\n\n## Usage\n\n```fundamental\nAmounts v4.2 ( github.com/ivan-sincek/amounts )\n\nUsage:   amounts [-min minimum] [-max maximum] -mid middle -o out         [-q quotes]\nExample: amounts [-min 1      ] [-max 1000   ] -mid 20     -o amounts.txt [-q double]\n\nDESCRIPTION\n    Generate a wordlist to fuzz amounts or any other numerical values\nMINIMUM\n    Minimum amount allowed\n    -min, --minimum = 1 | etc.\nMAXIMUM\n    Maximum amount allowed\n    -max, --maximum = 1000 | etc.\nMIDDLE\n    Preferably, a multi-digit amount greater than the minimum, lesser than the maximum, and not equal to zero\n    -mid, --middle = 20 | etc.\nQUOTES\n    Quotes for enclosing the amounts\n    Use comma-separated values\n    Default: none\n    -q, --quotes = none | single | double | backtick | all\nIGNORE\n    Ignore hardcoded values\n    -i, --ignore\nOUT\n    Output file\n    -o, --out = amounts.txt | etc.\n```\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fivan-sincek%2Famounts","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fivan-sincek%2Famounts","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fivan-sincek%2Famounts/lists"}