Директории для сканирования сайта [Архив]

Просмотр полной версии : Директории для сканирования сайта

swat_

27.07.2011, 18:09

Предлагаю в этой теме постить свои списки директорий по которым вы ищите админки,файлы и тд

я начну

возможные директории админок,файлов, etc скачать (http://zalil.ru/31475353)

возможные директории pma скачать (http://zalil.ru/31475358)

p.s сканирую директории программой ArxScanSite

скачать (http://zalil.ru/31475340)

пароль antichat

модераторов прошу закрепить тему

хотел выложить директории прям тут но

1. Вы ввели слишком длинный текст (61841 символов). Пожалуйста, сократите его до 25000 символов.

brain

27.07.2011, 18:18

Osstudio

27.07.2011, 19:37

Админки:

Code:
admin1.php
admin1.html
admin2.php
admin2.html
yonetim.php
yonetim.html
yonetici.php
yonetici.html
adm/
admin/
admin/account.php
admin/account.html
admin/index.php
admin/index.html
admin/login.php
admin/login.html
admin/home.php
admin/controlpanel.html
admin/controlpanel.php
admin.php
admin.html
admin/cp.php
admin/cp.html
cp.php
cp.html
administrator/
administrator/index.html
administrator/index.php
administrator/login.html
administrator/login.php
administrator/account.html
administrator/account.php
administrator.php
administrator.html
login.php
login.html
modelsearch/login.php
moderator.php
moderator.html
moderator/login.php
moderator/login.html
moderator/admin.php
moderator/admin.html
moderator/
account.php
account.html
controlpanel/
controlpanel.php
controlpanel.html
admincontrol.php
admincontrol.html
adminpanel.php
adminpanel.html
admin1.asp
admin2.asp
yonetim.asp
yonetici.asp
admin/account.asp
admin/index.asp
admin/login.asp
admin/home.asp
admin/controlpanel.asp
admin.asp
admin/cp.asp
cp.asp
administrator/index.asp
administrator/login.asp
administrator/account.asp
administrator.asp
login.asp
modelsearch/login.asp
moderator.asp
moderator/login.asp
moderator/admin.asp
account.asp
controlpanel.asp
admincontrol.asp
adminpanel.asp
fileadmin/
fileadmin.php
fileadmin.asp
fileadmin.html
administration/
administration.php
administration.html
sysadmin.php
sysadmin.html
phpmyadmin/
myadmin/
sysadmin.asp
sysadmin/
ur-admin.asp
ur-admin.php
ur-admin.html
ur-admin/
Server.php
Server.html
Server.asp
Server/
wp-admin/
administr8.php
administr8.html
administr8/
administr8.asp
webadmin/
webadmin.php
webadmin.asp
webadmin.html
administratie/
admins/
admins.php
admins.asp
admins.html
administrivia/
Database_Administration/
WebAdmin/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
ServerAdministrator/
SysAdmin/
administer/
LiveUser_Admin/
sys-admin/
typo3/
panel/
cpanel/
cPanel/
cpanel_file/
platz_login/
rcLogin/
blogindex/
formslogin/
autologin/
support_login/
meta_login/
manuallogin/
simpleLogin/
loginflat/
utility_login/
showlogin/
memlogin/
members/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
UserLogin/
login-us/
acct_login/
admin_area/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
radmind/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
Lotus_Domino_Admin/
bbadmin/
vmailadmin/
Indy_admin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
Super-Admin/
AdminTools/
cmsadmin/
SysAdmin2/
globes_admin/
cadmins/
phpSQLiteAdmin/
navSiteAdmin/
server_admin_small/
logo_sysadmin/
server/
database_administration/
power_user/
system_administration/
ss_vms_admin_sm/
admin.%EXT%
login.htm
login.html
login/
login.%EXT%
adm/
admin/
admin/account.html
admin/login.html
admin/login.htm
admin/home.%EXT%
admin/controlpanel.html
admin/controlpanel.htm
admin/cp.%EXT%
admin/adminLogin.html
admin/adminLogin.htm
admin/admin_login.%EXT%
admin/controlpanel.%EXT%
admin/admin-login.%EXT%
admin-login.%EXT%
admin/account.%EXT%
admin/admin.%EXT%
admin.htm
admin.html
adminitem/
adminitem.%EXT%
adminitems/
adminitems.%EXT%
administrator/
administrator/login.%EXT%
administrator.%EXT%
administration/
administration.%EXT%
adminLogin/
adminlogin.%EXT%
admin_area/admin.%EXT%
admin_area/
admin_area/login.%EXT%
manager/
manager.%EXT%
letmein/
letmein.%EXT%
superuser/
superuser.%EXT%
access/
access.%EXT%
sysadm/
sysadm.%EXT%
superman/
supervisor/
panel.%EXT%
control/
control.%EXT%
member/
member.%EXT%
members/
members.%EXT%
user/
user.%EXT%
cp/
uvpanel/
manage/
manage.%EXT%
management/
management.%EXT%
signin/
signin.%EXT%
log-in/
log-in.%EXT%
log_in/
log_in.%EXT%
sign_in/
sign_in.%EXT%
sign-in/
sign-in.%EXT%
users/
users.%EXT%
accounts/
accounts.%EXT%
wp-login.php
bb-admin/login.%EXT%
bb-admin/admin.%EXT%
bb-admin/admin.html
administrator/account.%EXT%
relogin.htm
relogin.html
check.%EXT%
relogin.%EXT%
processlogin.%EXT%
checklogin.%EXT%
checkuser.%EXT%
checkadmin.%EXT%
isadmin.%EXT%
authenticate.%EXT%
authentication.%EXT%
auth.%EXT%
authuser.%EXT%
authadmin.%EXT%
cp.%EXT%
modelsearch/login.%EXT%
moderator.%EXT%
moderator/
controlpanel/
controlpanel.%EXT%
admincontrol.%EXT%
adminpanel.%EXT%
fileadmin/
fileadmin.%EXT%
sysadmin.%EXT%
admin1.%EXT%
admin1.html
admin1.htm
admin2.%EXT%
admin2.html
yonetim.%EXT%
yonetim.html
yonetici.%EXT%
yonetici.html
phpmyadmin/
myadmin/
ur-admin.%EXT%
ur-admin/
Server.%EXT%
Server/
wp-admin/
administr8.%EXT%
administr8/
webadmin/
webadmin.%EXT%
administratie/
admins/
admins.%EXT%
administrivia/
Database_Administration/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
ServerAdministrator/
SysAdmin/
administer/
LiveUser_Admin/
sys-admin/
typo3/
panel/
cpanel/
cpanel_file/
platz_login/
rcLogin/
blogindex/
formslogin/
autologin/
support_login/
meta_login/
manuallogin/
simpleLogin/
loginflat/
utility_login/
showlogin/
memlogin/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
UserLogin/
login-us/
acct_login/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
radmind/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
Lotus_Domino_Admin/
bbadmin/
vmailadmin/
Indy_admin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
Super-Admin/
AdminTools/
cmsadmin/
SysAdmin2/
globes_admin/
cadmins/
phpSQLiteAdmin/
navSiteAdmin/
server_admin_small/
logo_sysadmin/
power_user/
system_administration/
ss_vms_admin_sm/
bb-admin/
panel-administracion/
instadmin/
memberadmin/
administratorlogin/
adm.%EXT%
admin_login.%EXT%
panel-administracion/login.%EXT%
pages/admin/admin-login.%EXT%
pages/admin/
acceso.%EXT%
admincp/login.%EXT%
admincp/
adminarea/
admincontrol/
affiliate.%EXT%
adm_auth.%EXT%
memberadmin.%EXT%
administratorlogin.%EXT%
modules/admin/
administrators.%EXT%
siteadmin/
siteadmin.%EXT%
adminsite/
kpanel/
vorod/
vorod.%EXT%
vorud/
vorud.%EXT%
adminpanel/
PSUser/
secure/
webmaster/
webmaster.%EXT%
autologin.%EXT%
userlogin.%EXT%
admin_area.%EXT%
cmsadmin.%EXT%
security/
usr/
root/
secret/
admin/login.%EXT%
admin/adminLogin.%EXT%
moderator.php
moderator.html
moderator/login.%EXT%
moderator/admin.%EXT%
yonetici.%EXT%
0admin/
0manager/
aadmin/
cgi-bin/login%EXT%
login1%EXT%
login_admin/
login_admin%EXT%
login_out/
login_out%EXT%
login_user%EXT%
loginerror/
loginok/
loginsave/
loginsuper/
loginsuper%EXT%
login%EXT%
logout/
logout%EXT%
secrets/
super1/
super1%EXT%
super_index%EXT%
super_login%EXT%
supermanager%EXT%
superman%EXT%
superuser%EXT%
supervise/
supervise/Login%EXT%
super%EXT%

vasykas

14.08.2011, 13:54

мои сборы админок

http://turboupload.com/g7yqh5ltd3nd

Expl0ited

14.08.2011, 14:03

По моему самый лучший инструмент, это OWASP DirBuster:

Code:
https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project#tab=Download

Преимущества:

Multi threaded has been recorded at over 6000 requests/sec

Works over both http and https

Scan for both directory and files

Will recursively scan deeper into directories it finds

Able to perform a list based or pure brute force scan

DirBuster can be started on any directory

Custom HTTP headers can be added

Proxy support

Auto switching between HEAD and GET requests

Content analysis mode when failed attempts come back as 200

Custom file extensions can be used

Performance can be adjusted while the program in running

Supports Basic, Digest and NTLM auth

Command line * GUI interface

Так же на сайте производителя есть база:
directory-list-2.3-small.txt - (87650 words) - Directories/files that where found on at least 3 different hosts

directory-list-2.3-medium.txt - (220546 words) - Directories/files that where found on at least 2 different hosts

directory-list-2.3-big.txt - (1273819 words) - All directories/files that where found

directory-list-lowercase-2.3-small.txt - (81629 words) - Case insensitive version of directory-list-2.3-small.txt

directory-list-lowercase-2.3-medium.txt - (207629 words) - Case insensitive version of directory-list-2.3-medium.txt

directory-list-lowercase-2.3-big.txt - (1185240 words) - Case insensitive version of directory-list-2.3-big.txt

directory-list-1.0.txt - (141694 words) - Original unordered list

apache-user-enum-1.0.txt - (8916 usernames) - Used for guessing system users on apache with the

userdir module enabled, based on a username list I had lying around (unordered)

apache-user-enum-2.0.txt - (10341 usernames) - Used for guessing system users on apache with the

userdir module enabled, based on ~XXXXX found during list generation (Ordered)

Code:
http://downloads.sourceforge.net/dirbuster/DirBuster-Lists.tar.bz2?use_mirror=osdn

robert_work

21.10.2011, 20:47

Проект СБА( Сбор Базы Админок )

Admin_base:

Code:
.bash_history
.ftpquota
.htconfig
.htpasswd
.tools/
_install/
_mysql/
_notes/
_private/
_tools/
_update.php
_voip/
_vti_bin/
~install.php
~update.php
1.php
1/
2003/
2006/
2007/
2008/
2009/
2010/
666/
acc.txt
account.php
acct_login/
add/
addnews/
adm/
adm2/
admin.cfg
admin.dat
admin.html
admin.inc
admin.pw
admin_files/
admin_includes/
admin2.php
admin4_account/
admincp/
administr8/
administration.php
administrator.asp
administrator.html
administrators/
adminpanel.html
adminpro/
admins.asp
admins.html
advanced/
aggregator/
ajax.php
ajax/
alogin.php
also order_log.dat
alterra/
am/
api/
app_code/
apps/
archive/
archives/
article.php
article/
articles.php
aspnet_client/
auth.php
author/
autobackup.php
autologin/
avi/
awald/
backup.php
backup.sql
bad/
banners/
base/
bbadmin/
beta/
bitmaps/
bitrix/
black/
blocks/
bugs/
c0de/
c99.php
call/
captchas/
card/
cart.php
cart/
catalogs/
category/
cb/
cc.txt
ccc/
cgi.cgi
cgi-bin/
cgi-perl/
cgi-secure/
ch/
chaines/
chart/
ck.log
class/
clickheat/
client/
clients/
cms/
cmsadmin/
cnet/
cnstats/
code/
codestariff/
command/
comment/
commercial/
community/
comp/
competition/
complete/
components/
conf/
config.ini
config/
connect.php
consumer/
cont/
contact/
contacts.html
content.php
content/
contents/
contrib/
controlpanel.asp
controlpanel.html
controls/
cool.php
copyright.txt
counter/
counters/
cp.asp
cpanel_file/
cps/
cron.php
csimg/
custom/
customer_login/
daemon/
daily/
data/
database.inc
database/
database_administration/
db.inc
dbadmin/
dcontent/
default/
demo/
demos/
descs/
design/
dev/
development/
dialogs/
dict/
dig/
dir/
directory/
dl/
document/
dog/
down/
dpanel/
dremin/
e107_handlers/
editor/
education/
elements/
elite.php
email/
empty/
engine/
errordocs/
etc/
events/
evs/
example/
examples/
exec/
exploits/
export/
extension.inc
extras/
feed/
feedback/
file/
file_id.diz
fileadmin.php
finance/
first.php
for_inf/
foren/
formslogin/
forum/
free.php
freeware/
ftps/
full/
fun/
function.inc
function.php
functional.php
gcc/
generic/
get.php
give.php
global.php
global/
globes_admin/
gp/
greybox/
groupcp.php
groups/
guestbook/
h4ck/
hack/
haddan_files/
hash/
hex/
horde/
house/
hr/
htbin/
htm/
html/
imode/
import/
in/
inc/
include/
include_content/
includefiles/
incoming_files/
informer/
ini/
init/
input/
install.php
install_.php
installation/
ip/
ips_kernel/
irc/
irc-macadmin/
itpm/
joke.php
local/
local_url/
log/
log_order/
log_orders/
logfiles/
login.asp
login_db/
login1/
loginflat/
logo.jpg
logs.php
lol/
mac/
mail-admin.nsf
main/
mall_log_files/
mambots/
manager/
manual/
member_info/
members.php
membership/
moa/
mobile/
modcp/
modelsearch/
moderation.php
moderator/
modules.php
money/
msg/
mssql/
mysql.user/
mysql/
mysql_admin/
mysqladmin/
mysql-admin/
mysqlinfo.php
mysqlinfo.shtml
newsadmin/
null/

Expl0ited

21.10.2011, 21:43

Дополню

Code:
/.svn/
/svn/
/11.PHP
/php-my-admin/
/phpMyAdmin-2.5.5-rc1/
/phpMyAdmin-2.5.5-rc2/
/phpMyAdmin-2.5.5-pl1/
/phpMyAdmin-2.5.6-rc1/
/phpMyAdmin-2.5.6-rc2/
/phpMyAdmin-2.5.7-pl1/
/phpMyAdmin-2.6.0-alpha/
/phpMyAdmin-2.6.0-alpha2/
/phpMyAdmin-2.6.0-beta1/
/phpMyAdmin-2.6.0-beta2/
/phpMyAdmin-2.6.0-rc1/
/phpMyAdmin-2.6.0-rc2/
/phpMyAdmin-2.6.0-rc3/
/phpMyAdmin-2.6.0-pl2/
/phpMyAdmin-2.6.0-pl3/
/phpMyAdmin-2.6.1-rc1/
/phpMyAdmin-2.6.1-rc2/
/phpMyAdmin-2.6.1/
/phpMyAdmin-2.6.1-pl1/
/phpMyAdmin-2.6.1-pl2/
/phpMyAdmin-2.6.1-pl3/
/phpMyAdmin-2.6.2-beta1/
/phpMyAdmin-2.6.2-pl1/
/phpMyAdmin-2.6.4-rc1/
/phpMyAdmin-2.6.4-pl1/
/phpMyAdmin-2.6.4-pl2/
/phpMyAdmin-2.6.4-pl3/
/phpMyAdmin-2.6.4-pl4/
/phpMyAdmin-2.7.0-beta1/
/phpMyAdmin-2.7.0-rc1/
/phpMyAdmin-2.7.0-pl1/
/phpMyAdmin-2.7.0-pl2/
/phpMyAdmin-2.8.0-beta1/
/phpMyAdmin-2.8.0-rc1/
/phpMyAdmin-2.8.0-rc2/
/phpMyAdmin-2.8.0/
/phpMyAdmin-2.8.0.1/
/phpMyAdmin-2.8.0.2/
/phpMyAdmin-2.8.0.3/
/phpMyAdmin-2.8.0.4/
/phpMyAdmin-2.8.1-rc1/
/phpMyAdmin1/
/sqlmanager/
/mysqlmanager/
/p/m/a/
/PMA2005/
/pma2005/
/phpmanager/
/php-myadmin/
/phpmy-admin/
/webadmin/
/sqlweb/
/websql/
/webdb/
/pma
/myadmin
/phpmyadmin
/settings.php
/config.php
/configuration.php
/install.php
/inst.php
/instal.php
/upload.php
/uploads.php
/up.php
/load.php
/config.ini
/0
/1
/2
/3
/4
/5
/6
/7
/8
/9
/11
/111
/123
/200
/403
/404
/777
/1111
/1337
/2000
/2001
/2002
/2003
/2004
/2005
/2006
/2007
/2008
/2009
/2010
/2011
/2012
/12345
/123123
/123321
/123456
/.bash_history
/.bash_profile
/.htaccess
/.htpasswd
/.mysql_history
/.passwd
/@dmin
/___admin
/__admin
/__tmp
/_adm
/_admin
/_admin_.php
/_back
/_backup
/_dump
/_errors
/_install
/_install.php
/_mem_bin
/_pages
/_private
/_scripts
/_sess
/_sessions
/_startup.php
/_system
/_test
/_tmp
/_vti_bin
/_vti_cnf
/_vti_inf.html
/_vti_log
/_vti_pvt
/_vti_txt
/~apache
/~nobody
/~root
/~tmp
/0.php
/0day
/1.php
/11.php
/111.php
/12.php
/123.php
/2.php
/3.php
/333.php
/4.php
/4admin
/4dm1n
/4dmin
/5.php
/57.php
/6.php
/666.php
/7.php
/777.php
/8.php
/9.php
/99.php
/a
/a.php
/a_d_m_i_n
/a_gedit.php
/aa
/aaa
/aaaa
/about
/acart
/acc
/acces
/access
/access.log
/access.txt
/access_log
/account
/accounts
/acess
/achievo
/activate
/active
/ad
/add
/add.php
/addons
/address
/adm
/adm.php
/adm1
/adm1n
/admen
/admi
/admin
/a-d-m-i-n
/admin.pages
/admin.php
/admin_
/admin_.php
/admin_fuck_you.php
/admin_panel
/admin_reply
/admin~
/admin1
/admin2
/admin3
/admin777
/admin-a
/admincfg.php
/AdminControlPanel
/admincp
/admindir
/adminenter
/admining.php
/administator
/administration
/administrator
/administrator.php
/administrators
/adminka
/adminka.php
/adminlogin
/adminlogin.asp
/adminlogin.html
/adminlogin.php
/admin-login.php
/adminpage
/adminpages
/adminpanel
/adminpatch
/admins
/adminsignup
/AdminWeb
/adsensepackages
/aedit
/ai
/Ajan.asp
/ajax
/album
/albums
/alert.php
/alias
/aliases
/all
/allow
/allusers
/alpha
/amanager
/analog.txt
/ann
/anne
/Antichat.php
/apache
/apanel
/app-admin
/application
/applications
/arc
/archive
/archives
/area51
/article
/articles
/ashop
/Asmodeus.pl
/asp
/assets
/audio
/audit
/auth
/auth.do
/auth.html
/auth.php
/av
/ava
/avatar
/avatars
/awstats
/b
/b.php
/back
/backup
/backup.sql
/backups
/backupserver
/bad.txt
/bak
/ban
/bank
/banner
/base
/bash
/bash_history
/basic
/bay
/bb
/bbb
/bbbb
/bbcode
/bbs
/be
/beta
/bhistory
/Big_Pussy.phtml
/bill
/billing
/billpay
/bin
/bk.php
/block
/blog
/boardroom
/book
/books
/boot
/boy
/boys
/browser
/browser.php
/bsd
/bug
/bugs
/c
/c.php
/c2007.php
/c99.php
/c99_gz.php
/C99_rus.php
/c9999.php
/c99edit.php
/c99mad.php
/c99madshell.php
/c99-safe-mode.php
/c99sh_backconn.pl
/c99shell.php
/cache
/Cache_Engine
/caches
/camserver
/card
/cards
/cash
/casino
/Casus15.php
/catalog
/cbi-bin
/cc
/cc.php
/ccbill
/ccc
/ccc.php
/cccc
/cdrom
/ceditor.htm
/ceditor.php
/central
/CertControl
/CertEnroll
/certsrv
/cfg.php
/cfg.txt
/cgi
/cgi.cgi
/cgi.php
/cgi_bin
/cgi-914
/cgi-915
/cgi-auth
/cgibin
/cgi-bin
/cgi-bin2
/cgi-csc
/cgi-exe
/cgi-home
/cgi-lib
/cgi-local
/cgi-perl
/cgi-python.py
/cgis
/cgi-scripts
/cgi-shl
/cgi-shop
/cgi-src
/cgi-sys
/cgi-temp
/cgi-win
/changlog
/chat
/check
/checkpoint
/cihshell.php
/citrix
/clas
/class
/classes
/classified
/client
/ClientAdmin
/clients
/closed
/closeup
/CmdAsp.asp
/CmdAsp.php
/cms
/cmsadmin
/cmsimple
/cobalt
/code
/codes
/cohfig.php
/com
/comment
/Common
/community
/component
/components
/conf
/conference
/conferences
/confidential
/config
/config.inc
/config.inc.php
/config.inc.php.txt
/config.inc.php~
/config.inc.txt
/config.inc~
/config.ini
/config.ini.txt
/config.php
/config.php.inc
/config.php.inc~
/config.php.txt
/config.php~
/config.txt
/config1.php
/configoptions.php
/configs
/configuration
/configuration.txt
/connect
/connect.php
/connectback2.pl
/console
/content
/control
/controllers
/controlpanel
/control-panel
/converters
/cook
/cookie
/cookies
/cooks
/cool
/corp
/corporate
/count
/country
/cp
/cpadmin
/cpanel
/cpanel.php
/cpmoder
/cracker
/cracker.php
/crackers
/crackers.php
/crm
/CS
/Csh.php
/css
/csv
/Ctt_sh.php
/customer
/customers
/customphp
/CVS
/cvsweb
/cybercash
/Cybershell.php
/CyberSpy5.Asp
/d
/d.php
/da
/dat
/data
/database
/databases
/datas
/db
/db.php
/db01
/db02
/db03
/db1
/db2
/db3
/dbase
/dblog
/dd
/ddd
/dddd
/de
/default
/Default.php
/delivery
/demo
/demoadmin
/deny
/design
/designs
/desktop
/dev
/dev1
/develop
/development
/devil
/devlnull
/dir
/dir.php
/directory
/dirs
/disk
/disks
/dist
/distr
/distrib
/distribution
/distributions
/dll
/dll.php
/dmr
/doc
/doc-html
/docmanager
/docs
/document
/documents
/domain
/doom
/down
/download
/DownloaderToFTP.php
/downloads
/dreamweaver
/dsp
/dtd
/dump
/dump.sql
/dumper
/dumper.php
/dx.php
/DxShell.php
/DxShell_hk.php
/e
/e.php
/ebay
/e-bay
/edit.php
/editor
/editor.php
/EFSO_2.asp
/EFSO2.asp
/ElmaliSeker.asp
/email
/email.txt
/emails
/employer
/eng
/ensim
/enter
/entries
/eo.php
/epoch
/erp
/error
/error.log
/error_log
/errors
/etc
/etc/security
/eth0
/example
/examples
/exchange.log
/exe
/exim
/exp
/export
/extr
/f
/f.php
/faq
/fcgi-bin
/fckeditor
/fckeditor.php
/file
/file.php
/filehunter
/fileload.php
/filemanager
/fileManager.php
/files
/films
/find
/findme.php
/fla
/flash
/folder
/forum
/forums
/forwrite
/foto
/fotos
/Fotott.php
/foundry
/frontpage
/ftp
/ftp.txt
/fuck
/fuck.php
/fucku.php
/fuckyou
/Fuel
/func
/funcctions
/function
/img
/function.php
/g
/g.php
/gadmin
/gal
/gall
/gallery
/gateway
/general
/get
/get.php
/getty
/GFS.php
/gfs_sh.php
/gifs
/girl
/girls
/global
/god
/gold
/good.txt
/google
/googleearth
/gpanel
/group
/groups
/groupwise
/grp-2018.php
/guest
/guestbook
/guestbooks
/guests
/gui
/GXApp
/gzr.php
/h
/h.php
/hack
/hacked
/hacked.php
/hacker
/hacker.php
/hacks
/hacks.php
/haeder.php
/HB
/help
/hide
/Hidshell.php
/history
/home
/host
/hosting
/hosts
/hr
/htaccess.txt
/htbin
/htdocs
/htm
/html
/htmlarea
/i
/i.php
/ibank
/ibill
/ico
/icon
/icons
/icq
/icq.txt
/id
/iisadmin
/iisadmpwd
/iishelp
/iissamples
/im
/image
/images
/img
/img.php
/img_0.php
/img_1.php
/img_2.php
/img_3.php
/img_4.php
/img_5.php
/img_6.php
/img_7.php
/img_8.php
/img_9.php
/imgedit
/imgupload.php
/iMHaPFtp.php
/imp
/import
/in
/inc
/includ
/include
/includes
/incs
/indeks.php
/index
/index.asp
/index.htm
/index.html
/index.php
/index1.html
/index1.php
/index2.html
/index2.php
/index3.php
/index4.php
/index5.php
/indexc.php
/Indexer.asp

Code:
/info
/info.php
/information
/InformationSystems
/informer
/ini
/inside
/install
/install.php
/installation
/internal
/international
/intra
/intranet
/ip
/irc
/isapi
/j
/j.php
/java
/javascript
/javascripts
/javaserver
/JavaShell.js
/javsascript
/jdbc
/john
/joomla
/js
/jscript
/jscripts
/jserv
/jsp
/k
/k.php
/KA_uShell.php
/key
/key.php
/keys
/Kiss_My_Ass.php
/Klasvayv.asp
/l
/l.php
/l0gin.php
/labs
/lan
/lang
/language
/languages
/leet
/letters
/lib
/lib.php
/librarie
/libraries
/library
/library.php
/License.php
/link
/linkadmin
/list
/list.txt
/listingadmin
/listings
/lists
/lite
/live
/lng
/lng.php
/load
/load.php
/Load_shell.php
/loaded
/loader
/loads
/local
/log
/log.php
/log.txt
/log_in
/login
/log-in
/login.php
/loginadmin
/login-admin.php
/logins
/logon
/logos
/logout
/logs
/logs-a
/lol.php
/look
/lookup
/lotus
/love
/lurm_safemod_on.pl
/m
/m.php
/m123.php
/madshell.php
/mail
/mail.php
/mail.txt
/mailer
/mailer3.php
/mailman
/mailroot
/mails
/main.php
/make
/makefile
/mambo
/manage
/manager
/manager.php
/mans
/manual
/manuals
/map
/mark
/mary
/master
/mastergate
/matrix
/mb
/me
/media
/mediafiles
/member
/member.php
/members
/members.php
/mini
/mirror
/misc
/mload
/mload.php
/mobile
/mod
/modcp
/moder
/moderation
/moderator
/modercp
/mods
/modul
/modules
/money
/movies
/mp3
/mpcgi
/mrtg
/msadc
/MSMQ
/msn
/mssql
/multisite
/musicfiles
/mw
/my
/myadmin
/mydownloads
/myfiles
/myphpadmin
/myshell.php
/mysql
/mysql.php
/mysql.sql
/mysql_tool.php
/MySQLBackUpAll.php
/MySQLBackUpOnce.php
/myupload
/myuploads
/n
/n.php
/n031337f1l3
/neo
/net
/netbilling
/netcat
/netware
/network
/network.php
/NetworkFileManager.php
/new
/news
/newtorents
/NFM.php
/NGH.php
/night
/NiX.php
/Nixrem.php
/note
/novell
/NSearch
/nshell.php
/NST.php
/nt
/NTdaddy.asp
/null
/o
/o.php
/objects
/odbc
/oetaki
/office
/old
/oldsitefiles
/one
/oop
/open
/opt
/option
/opts
/oracle
/order
/orders
/org
/oscommerce
/other
/oursites.php
/out
/outlook
/outside
/ows-bin
/p
/p.php
/p2p
/page
/pager
/pages
/panel
/panel.html
/panel.php
/pars
/parser
/parser.php
/partner
/pass
/pass.txt
/passport
/passwd
/passwd.adjunct
/password
/password.txt
/passwords
/path
/paths
/payment
/PBSData
/PBServer
/peoplesoft
/perl
/perl5
/perlbot.pl
/pers
/personal
/ph.php
/pharma
/pharmacy
/phone
/phones
/phorum
/photo
/photos
/photoshop
/php
/php.ini
/php.php
/phpadmin
/php-adminpanel
/PHPBackdoorConnect.pl
/phpbb
/phpboard
/phpinfo.php
/phpinfo.php.txt
/pHpINJ.php
/phpmyadmin
/phpnuke
/phpproject
/phpRemoteView.php
/phpsess
/phpsessid
/PHPShell.php
/Phvayvv.php
/PhytonShell.py
/pics
/picture
/picture_library
/pictures
/pipermail
/pix
/plesk-stat
/plug
/plugin
/plugins
/pma
/pma.php
/polly
/porn
/portal
/possix
/post
/postadmin
/postgres
/postnuke
/postnuke/html
/powerseller
/pre
/Predator.php
/prelive
/printer
/printers
/priv
/private
/prodimages
/product
/products
/profile
/profiles
/program
/program.pl
/programfiles
/pron
/provider
/proxy
/psd
/psds
/psm
/pub
/public
/pwd.txt
/Pws.php
/pwtn_application
/q
/q.php
/qaz
/qazwsx
/qqq
/quake
/qwe
/qwe.php
/qwerty
/r
/r.php
/r00t.php
/r00t_access.php
/r0t.php
/r57.php
/r57MySQL_FileViewer.php
/r57pws.pl
/r57shell.php
/r57shell_1.4.php
/radmin
/Rashell.php
/rdp
/read
/Reader.asp
/reader.php
/README.txt
/reg
/register
/registration
/registrations
/related
/RemExp.asp
/remote
/Remview.php
/rep
/report
/report.txt
/reports
/reports.txt
/res
/resource
/resources
/restricted
/result
/results
/robert
/robot.txt
/robots.txt
/root
/root.php
/root_Of_server.php
/rpc
/rr57.php
/rss
/rst.php
/rst_sql.php
/ru24_post_sh.php
/rus
/s
/s.php
/sa
/sample
/sample1
/sample2
/samples
/save
/saves
/schemes
/scores
/scr
/script
/scripts
/sdf
/search
/sec
/secret
/secrets
/secure
/security
/seller
/send
/servadmin
/server
/Server.php
/server1
/server2
/serverbackup
/servers
/server-status
/ServerVariables.asp
/service
/services
/sess
/session
/sessions
/set
/sets
/setting
/settings
/setup
/setup.info.php
/setup.php
/sex
/sh.php
/share
/sharepoint
/shares
/she11.php
/shell
/shell.php
/shell.txt
/shellbot.pl
/shelll.php
/shipping
/shop
/shopping
/shutdown
/siebel
/sign_up
/sign_up.html
/sign_up.php
/signup
/sign-up
/signup.html
/sign-up.html
/signup.php
/sign-up.php
/signupadmin
/silver
/Sincap.php
/site
/siteadmin
/site-admin
/sites
/skin
/skin1
/skin1_admin
/skins
/slave
/small
/smart
/Smarty-2.6.3
/smie
/sms.php
/smtp
/smtpd.py
/snort
/socks
/socks5.php
/soft
/sound
/source
/sources
/spam
/spamcop
/spider
/spidered
/spiders
/sport
/SQL
/sql.php
/sql.sql
/sqladmin
/squid
/squirellmail
/src
/ss.php
/ss_bz.php
/ss_gz.php
/ssi
/ssl
/sss.php
/stage
/stage1
/stager
/startup.php
/stat
/statistics
/stats
/status
/stock
/stockphoto
/stocks
/store
/stored
/StudentGroups
/students
/style
/Suck_My_Fuckin_Big_Balls.php
/susan
/swf
/sys
/sysadmin
/sysinfo
/syslog
/system
/system32
/systema
/systemadm
/systemadmin
/systemadministration
/t
/t.php
/TABadmin
/tag
/tags
/te.php
/telnet.php
/telnetd.php
/temp
/template
/templates
/Temporary
/terminal
/test
/test.php
/test12
/test-cgi
/tests
/testtest
/themes
/thumbs
/tmp
/tmp.php
/to_adm
/ToDo
/tom
/tool
/Tool.asp
/tools
/top
/torch
/torrent
/torrents
/total
/tracker
/trash
/tree
/treeadmin.php
/trial
/truncate
/trust
/tshirt
/tsweb
/two
/u
/u.php
/uddi
/uddipublic
/UFO
/uin
/uin.txt
/uins
/uins.txt
/uk
/uload.php
/uni
/up
/update
/Update.sql
/updates
/upfile
/uplfile
/upload
/upload.php
/uploaded
/uploader.php
/uploads
/ups
/urchin
/usage
/user
/user.php
/user.txt
/UserAccess
/userbase
/userfile
/userfiles
/users
/users.php
/users.txt
/usr
/util
/utilites
/utils
/v
/v.php
/v2
/var
/Variables.php
/VbShell.php
/vbulletin
/vendor
/version
/video
/videos
/view
/views
/VIRUS.php
/vmware
/voip
/vpn
/vsadmin
/VShell.php
/vso.php
/vti/maildir
/vti_cnf
/vv
/vv.php
/vvc
/vvv
/vvv.php
/w
/w.php
/wan
/wap
/warez
/we.php
/web
/web2
/web20
/webaccess
/webadmin
/webadmin.php
/webalizer
/WebBank
/webboard
/webcam
/webcash
/webcgi
/weblog
/webmail
/WebShell.pl
/WebShop
/website
/webstat
/webstats
/webusers
/willopen
/winnt
/wireless
/wm
/wmv
/wp-admin
/wp-login.php
/write
/ws_ftp
/wso.php
/wso2.php
/wso2_bz.php
/wso2_gz.php
/ww
/www
/wwwboard/phpinfo.php
/wwwjoin
/wwwlog
/wwwroot
/www-root
/x
/x.php
/x0
/x1
/x2
/xak
/xekme.php
/xinfo.php
/xml
/Xoce.php
/xp
/xp.php
/xsl_admin
/xx
/xx.php
/xxx
/xxxx
/xxxxx
/xxxxxx
/xxxxxxx
/xxxxxxxx
/xxxxxxxxx
/xxxxxxxxxx
/xy
/y
/y.php
/ya_shell.php
/YASUPERHACKER.php
/z
/z.php
/zaco.php
/zaco_bz.php
/zaco_gz.php
/Zacosmall.php
/Zehir4.asp
/zero
/zeroday
/zip
/zz
/zz.php
/zzz
/admin
/includes
/industry_news
/scripts
/sIFR
/styles
/2007
/2008
/Banners
/certificationmagazine-26
/clickTAG
/common
/digital-edition
/newsimages
/purchase
/register
/renew
/renewal
/subscribe
/whitepapers

BLurpi^_^

21.10.2011, 23:17

собрал всё выше выложенное и отчистил от дубликатов

http://keep2.me/fd24678

BLurpi^_^

22.04.2012, 13:42

http://www.sendspace.com/file/1fj40d

перезалил+ добавил новые

daniel777

05.05.2012, 04:07

http://www.sendspace.com/file/gxffgi

Добавил новых и перезалил. 3488 штук.

METRuby601

24.06.2012, 01:07

daniel777 said:
http://www.sendspace.com/file/gxffgi
Добавил новых и перезалил. 3488 штук.

а как их юзать?

daniel777

24.06.2012, 22:51

sonic said:
а как их юзать?

Вставлять в сканер директорий сайта, который можно найти в поисковике.

daniel777

30.07.2012, 12:17

http://www.sendspace.com/file/1kcyp7

Добавил новых и перезалил. 3538 штук.

boss_kvp

16.01.2013, 02:29

Прошу очень обновить ссылки на программу и базу

Очень прошу выложите саму программу и базу к ней ссылки не работают очень надо прощу....

Toorion

17.01.2013, 00:17

Перезалейте файл плиз

Voinmraka

24.06.2013, 23:07

перезалейте пути если нетрудно

Muracha

24.02.2018, 18:04

Обновляю список директории.

В файле списки admin* и phpmyadmin + различные файлы для нахождения файловых менеджеров и системных файлов linux

43931 записи

tester_new

15.11.2020, 14:30

словарик big.txt + добавляю просто список расширений через запятую, это в случае использования таких утилит как dirb, gobuster, wfuzz....

grimnir

09.01.2021, 00:45

Нуклей обновился с темплейтами https://github.com/projectdiscovery/nuclei

https://github.com/projectdiscovery/nuclei-templates

Templates are the core of nuclei scanner (https://github.com/projectdiscovery/nuclei) which power the actual scanning engine.

обновлены пути от админера до актуальных багов ,рекомендую ознакомиться,софт от создателей небезызвестного subfinder