SecLists
by
danielmiessler

Description: SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types...

View on GitHub ↗

Summary Information

Updated 2 hours ago
Added to GitGenius on March 2nd, 2026
Created on February 19th, 2012
Open Issues & Pull Requests: 8 (-4)
Number of forks: 25,067
Total Stargazers: 72,059 (+4)
Total Subscribers: 1,988 (+0)

Issue Activity (beta)

Open issues: 8
New in 7 days: 0
Closed in 7 days: 0
Avg open age: 174 days
Stale 30+ days: 8
Stale 90+ days: 4

Recent activity

Opened in 7 days: 0
Closed in 7 days: 0
Comments in 7 days: 0
Events in 7 days: 0

Top labels

  • enhancement (42)
  • bug (25)
  • help wanted (19)
  • question (14)
  • wordlist (14)
  • ci/cd (10)
  • n/a (8)

Most active issues this week

No issue events were indexed in the last 7 days.

Repository Insights (GitGenius)

Median issue/PR response: 0.0 hours
Mean response time: 265.4 days
90th percentile: 1291.7 days
Tracked items: 101

Most active contributors

Detailed Description

SecLists is a comprehensive collection of multiple types of lists designed specifically for security assessments and penetration testing. Maintained by Daniel Miessler, Jason Haddix, Ignacio Portal, and g0tmi1k, the repository serves as a centralized resource that enables security testers to access numerous list types in a single location. The collection includes usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many additional list categories. The primary goal is to allow a security tester to clone the repository onto a new testing environment and immediately have access to every type of list that may be needed during an assessment.

The repository is written primarily in PHP and has grown to become a widely-used resource in the security community, with over 71,920 stargazers as of the most recent tracking. Installation options are flexible, including direct zip downloads, git cloning without commit history for faster setup, complete git cloning with full history, and pre-packaged installations available on Kali Linux and BlackArch distributions. The repository size is substantial enough that approximate cloning time is estimated at around eight minutes and forty-one seconds at 50 megabytes per second.

GitGenius tracking data reveals active community engagement with 101 tracked issues and pull requests showing a median response latency of zero hours, indicating rapid community attention to submissions. The most frequently applied issue labels are enhancement with 41 occurrences, bug with 25, and help wanted with 18, demonstrating ongoing development and community contribution opportunities. The most active contributors tracked include ItsIgnacioPortal with 200 events, g0tmi1k with 72 events, and molangning with 10 events, showing concentrated but sustained maintenance activity.

The project maintains connections to other major open-source repositories through overlapping contributors, with links identified to microsoft/vscode, microsoft/typescript, and rust-lang/rust, indicating cross-pollination with significant technology projects. SecLists is classified across multiple security domains including security testing, penetration testing, wordlists, payloads, vulnerability assessment, ethical hacking, fuzzing, brute-force techniques, cybersecurity data, and enumeration.

The repository includes references to similar projects and complementary wordlist tools, acknowledging the broader ecosystem of security testing resources. A note in the documentation warns that downloading the repository may trigger false-positive alarms from antivirus or anti-malware software, recommending that filepaths be whitelisted. The project is licensed under the MIT license and actively seeks community support through GitHub sponsorship options for both the founder and current maintainers.

SecLists
by
danielmiesslerdanielmiessler/SecLists

Repository Details

Fetching additional details & charts...