MENU

目录扫描与敏感文件字典优化

November 27, 2019 • Read: 64 • 安全阅读设置

0x01 字典收集

字典来源:平时积累、Github字典、扫描器、工具字典提取等。

0x02 文件去重

对所有字典文件进行md5去重,然后计算出去重后的每个文件的MD5值。

[root@localhost~]# "md5 ./* > MD5.txt"*
MD5 (./1.dir.txt) = da0346e1aabb4365c4b14bda5a67f388
MD5 (./1.dir的副本.txt) = 27b0e7d1fb2d35064217d1818425f89d
MD5 (./1.pack.txt) = 83efc8bd1b540676b64816635a9f3a98
MD5 (./1.pack的副本.txt) = 92bd08da02ebbb4fe602867a6dd4f3d5
MD5 (./1.txt) = 935dd33b372106ebe5867765f3390e3a
MD5 (./10.cgi.txt) = b1d1692a2f5b6262706e54e2baebba9f
MD5 (./10.pl.txt) = e6480c0824c8711bee9333e4e6d5f51f
MD5 (./1000多个目录.dict) = a8f52dd493be14f813d3db7653894157
MD5 (./1000多个目录.dict2) = a8f52dd493be14f813d3db7653894157
MD5 (./1000多个扩展名.dict) = 29bf9103a634022e695d8600867f938c
MD5 (./11.py.txt) = 4b8067d856d14ce3fc09d45345a1788b
MD5 (./12.cfm的副本.txt) = 106a302a29adbb08017b6e2665fe7fad
MD5 (./1200多个文件名.dict) = 2e41ca2e0c33ef83faecae6a09d7eb81
MD5 (./2.dir.txt) = 42c466dbbffde6fad2f24d29b74f98b4
MD5 (./2.php.txt) = a4ad085e03ba25a625e91904c10e4618
MD5 (./2.rar.zip.txt) = a9da10e954acb6768b7166a9008bcc3e
MD5 (./2.rar.zip的副本.txt) = da07878c1d98bd3b9c62a3af536c5a87
MD5 (./200多个文件名.dict) = 9ea0cb5a12a1d282e329e70b9103b898
MD5 (./224条webshell密码.dict) = cdb37de80ed8e52e8934527cd6cfd8c9
MD5 (./2600条ASP.txt) = 748c1fd8bbeeb6978ab82d29dc59bca0
MD5 (./2600条ASPX.txt) = 9cdd79dfdc4ff8212791dabd91ecc429
MD5 (./2600条PHP.txt) = 2e14fdcc382b865698ff364d1c7631fa
MD5 (./3.asp.txt) = 5f94af8604a8765f457697ec235b92da
MD5 (./3.asp的副本.txt) = 97d09e13c0145dc290150f2a1e0a32d6
MD5 (./3.sql的副本.txt) = 8ce6a06fb5b1a7c6919f4cc6e1605919
MD5 (./3CharExtBrute.fuzz.txt) = c9b358555fe24e1aadafd43fc7525455
MD5 (./4.aspx的副本.txt) = bb16e2855c4f61d00289b1ec7da0fc16
MD5 (./4.php.txt) = f2ae0fd04dcf1ae25559e8d5b7203017
MD5 (./4.php的副本.txt) = 62150b835eb21e97d31fafe1905caf2f
MD5 (./400多个目录.dict) = ab2c53d8de483492a9b2d9bf08c8d7db
MD5 (./400多个目录.dict的副本) = ab2c53d8de483492a9b2d9bf08c8d7db
MD5 (./5.aspx.txt) = bbd1d20a7e93059dc91911a375419baf
MD5 (./5.aspx的副本.txt) = b88e8d6fa016a82519dd794f5040b7cf
MD5 (./5.dir.txt) = c152dda346b86091747aead11ea3d655
MD5 (./5.php.txt) = cf101ea2612dce2d8a6f1f7216f43193
MD5 (./6.jsp的副本.txt) = d187690ef7cb56c699b029081e67a0ea
MD5 (./6.jsp的副本2.txt) = 5b98ea46d9e8b48b01bc1b9d415f55a4
MD5 (./7.asp.txt) = a7cc36fa8849ac0648d4d643d0591f1b
MD5 (./7.asp的副本.txt) = 640160d4f3feb7dc7b83b86d1f9b77d3
MD5 (./7.mdb.txt) = b58885e2e1ac3698dadb01038ad9707e
MD5 (./70多个扩展名.dict) = 3a8013a997304b1a71349dfa328f6034
MD5 (./8.mdb.txt) = 8d9528bc16934b4eac62f4fe5c30dc5f
MD5 (./8.mdb的副本.txt) = 4e47b4acdc79f8acb85d4882946ab59a
MD5 (./8.py.txt) = 015ec6d61822b949efcaec64d22ce19d
MD5 (./9.cfm.txt) = 1a0d8ab27fa52f231b6d5d7e265af1c6
MD5 (./9.cgi的副本.txt) = e54d4edac35cad27cb7fc1087e82bcf6
MD5 (./ASP3.txt) = bfd089ef1c74179f8eef2c33eb8ec2e9
MD5 (./ASPX4.txt) = 9314b72307b0f59a8f716141a804311f
MD5 (./ASPX的副本13.txt) = 9385194d0a6f1b28a0136323d16e053c
MD5 (./ASP的副本12.txt) = 3f7aae534dc6711efd86f274f2344778
MD5 (./ASP的副本13.txt) = d183567af22fc3f84781a2f74b96d56c
MD5 (./AdobeXML) = 00febff55c9dc5b292d13ca4a5922dc7
MD5 (./AdobeXML.fuzz.txt) = 00febff55c9dc5b292d13ca4a5922dc7
MD5 (./Apache.fuzz.txt) = 4eb10e9f977251e1ee298b7d313d8081
MD5 (./ApacheTomcat) = 2367df5cd0915abbbb29a77906c216bd
MD5 (./ApacheTomcat.fuzz.txt) = 2367df5cd0915abbbb29a77906c216bd
MD5 (./BAK.min.txt) = b5f6d500a60b7fada2e09c16c8dea788
MD5 (./BAK.txt) = bf4f71caaa85d952d32c21c844cb6892
MD5 (./CGI_HTTP_POST.fuzz.txt) = 9188a66f7ccc676ddf39bd5ce4d1f88e
MD5 (./CGI_HTTP_POST_Windows.fuzz.txt) = f00a73d4bca137f38a651acf390f7cd1
MD5 (./CGI_Microsoft.fuzz.txt) = f4aadf371cb27d5d7d45829f29e74b23
MD5 (./CGI_XPlatform.fuzz.txt) = 798e9ede0fc7d946a97adde084bdf26f
MD5 (./ColdFusion.fuzz.txt) = 0511ffdffae6c3c50de16d6892a77092
MD5 (./DIR.txt) = fa95e1462f2c9ba5958d092888213d88
MD5 (./DIR3.txt) = 7e799b32b5d990959a1a0db01b734c98
MD5 (./DIR超强.txt) = 6a94e6467e91719a377e503e82c3effc
MD5 (./DIR的副本10.txt) = c41fcd72b1b343cac75cf33312d4b7a8
MD5 (./DIR的副本11.txt) = 56d73aa4d3a2edb53450e0dd4a0f8966
MD5 (./DZ(discuz) x2.5 爆路径漏洞 0day.txt) = c4b53678826f491de9b87954fa121bcf
MD5 (./Dedecms_V5.7.txt) = 734377ed3c04d6a5a97b40bc363d0055
MD5 (./Discuz7.X通杀0day漏洞(UCenter Home-2.0).txt) = 6255b45cb1254129bcb60318cc182380
MD5 (./Discuz_X3.1.txt) = d0b04dfd51b7096132e7a213ac7a4cf0
MD5 (./ECShop_V2.7.2.txt) = 5ccba8c16df86b5daea1114f552ad148
MD5 (./ECshop 支付中心SQL注射0day.txt) = ab8d888c94fef851a90ac938ee64b6f1
MD5 (./Extensions.Backup.fuzz.txt) = 5320d8a2f11ce990df656306890875ae
MD5 (./Extensions.Common.fuzz.txt) = c63ecdc00b77d73bbc7ee0541fd6679f
MD5 (./Extensions.Compressed.fuzz.txt) = bbc155edab8e9eb6c5343daef6e79a24
MD5 (./Extensions.Mostcommon.fuzz.txt) = cdf64c0239b293f7ef0da45fc6c83498
MD5 (./Extensions.Skipfish.fuzz.txt) = a425ca73eded4df8d731ee46a9193cf3
MD5 (./FatwireCMS.fuzz) = 35a40a1de62d746ae93b65062e7e6cf7
MD5 (./FatwireCMS.fuzz.txt) = 35a40a1de62d746ae93b65062e7e6cf7
MD5 (./FileName.txt) = bd42b3c272c575fbf65c468c3f51bb5c
MD5 (./FileSuffix.txt) = 1472c4b39ae7c597d13bc156245c6ef4
MD5 (./Frontpage) = 9f766ce5dcb0e306628b175886612341
MD5 (./Frontpage.fuzz.txt) = 9f766ce5dcb0e306628b175886612341
MD5 (./HTTP_POST_Microsoft.fuzz.txt) = 9b56a4f56bfbc07658d9bbb844140433
MD5 (./Hyperion) = 1955fd924f572484f84ec27d3b2fac54
MD5 (./IIS) = 685b55cd2dda90b1bb606e29b88f000b
MD5 (./IIS.fuzz.txt) = 685b55cd2dda90b1bb606e29b88f000b
MD5 (./JBoss) = 41efb59e499e9dfe74aa5f2b3b6c9762
MD5 (./JBoss.fuzz.txt) = 41efb59e499e9dfe74aa5f2b3b6c9762
MD5 (./JRun.fuzz.txt) = 120665dfcc258d594b9090a96cda47a2
MD5 (./JSP3.txt) = 069525d25f255512e729dda492f15d17
MD5 (./JSP_CommonBackdoors) = 095b2228a7679ffd0fe305b1a38287d0
MD5 (./JSP的副本11.txt) = 9eece7830b30b7fab45fd85fe5eea7a7
MD5 (./JSP的副本12.txt) = 9eece7830b30b7fab45fd85fe5eea7a7
MD5 (./JSP的副本13.txt) = 874ec5cdca37946c92f4f7580697acb8
MD5 (./JSP的副本6.txt) = cefdad482b757c675fa6ac76d298e3cc
MD5 (./JavaServlets) = e029894232a76eba2f1765af99d101b2
MD5 (./JavaServlets_Common.fuzz.txt) = e029894232a76eba2f1765af99d101b2
MD5 (./Kesion cms注入漏洞.txt) = 1f1e4f234cea662884744a22ef506b38
MD5 (./KitchensinkDirectories) = 011b109bca582a41b869d394ee022fef
MD5 (./LEAKS.txt) = 3f819381af82cd7c489f26dda307567f
MD5 (./Logins) = 163ecdefcad38c11a13e73f70495e062
MD5 (./Logins.fuzz.txt) = 163ecdefcad38c11a13e73f70495e062
MD5 (./LotusNotes) = 778053587e7a31ab31d0a3cd4caaad9e
MD5 (./LotusNotes.fuzz.txt) = 778053587e7a31ab31d0a3cd4caaad9e
MD5 (./MDB3.txt) = 3a345d7bdd033a8ac1a224cda4f3fd90
MD5 (./MDB的副本10.txt) = 124be70f2bad480a1dcbe026f316d8c5
MD5 (./MDB的副本11.txt) = 124be70f2bad480a1dcbe026f316d8c5
MD5 (./MDB的副本12.txt) = 0849188295c99afaa7ba364502856f06
MD5 (./MDB的副本5.txt) = 2d6e32a2bdbfce27fc88d6a6ff0cc538
MD5 (./MDB的副本6.txt) = 124be70f2bad480a1dcbe026f316d8c5
MD5 (./Netware.fuzz.txt) = 3ed8b2f4d264e1077d8d6496afbc6859
MD5 (./Oracle9i.fuzz.txt) = 6d06dc9b46e1fa6bedbab87f0bab5a78
MD5 (./OracleAppServer) = c7528c4d7f14d0d948c038660c969e7b
MD5 (./OracleAppServer.fuzz.txt) = c7528c4d7f14d0d948c038660c969e7b
MD5 (./PHP.fuzz.txt) = a22ea587e27d3147da32806df144a796
MD5 (./PHP3.txt) = 20351b62c8e809cf854027538c3694e0
MD5 (./PHP_Common) = 85b4fcf65f247761f27d71125b8329a5
MD5 (./PHP_CommonBackdoors.fuzz.txt) = 4860b0ea35aeae8c37eca2e5acdf1aab
MD5 (./PHP的副本14.txt) = 54886b03461ecf871a20682c66b4df97
MD5 (./PHP的副本6.txt) = fc952ff56004c2c044c6e222853c68fb
MD5 (./Passwords.fuzz.txt) = ccebb95325071a1e6a035e0e03fecc44
MD5 (./Randomfiles.fuzz.txt) = 16a57e06944d9d6def5bfcf54a4ec300
MD5 (./RobotsDisallowed) = c9e4ac78d1c4d59091ada8cc1eccf761
MD5 (./SAP.fuzz.txt) = 9a01ef3df89282fea8d8faff5019848d
md5: ./SVNDigger: Is a directory
MD5 (./Sharepoint.fuzz.txt) = 8b8e6b549edafc47f6766b7795cb2278
MD5 (./SiteMinder) = f9d5a6fd27aec67936d92ddae0a932af
MD5 (./SiteMinder.fuzz.txt) = f9d5a6fd27aec67936d92ddae0a932af
MD5 (./SunAppServerGlassfish) = fcad0c97df996276cb4ea314ff82469b
MD5 (./SunAppServerGlassfish.fuzz.txt) = fcad0c97df996276cb4ea314ff82469b
MD5 (./SuniPlanet) = d7615a323c2eed0fc2fc46d3d22f3b7a
MD5 (./SuniPlanet.fuzz.txt) = d7615a323c2eed0fc2fc46d3d22f3b7a
MD5 (./ThinkPHP.txt) = 64c748214b2d372a995aced8cc2e9c0e
MD5 (./UnixDotfiles.fuzz.txt) = 77fb26da583bf9ed0cafe290e8c0f8ef
MD5 (./UserAgents.fuzz.txt) = dde6f3a86d37a503b58627c40f77444d
MD5 (./Vignette.fuzz.txt) = 32c7bf8513e4a6c9e0ea97910e676d3d
MD5 (./WebShell.txt) = 8d7a83b2e407968da520ff15cdf2aae9
MD5 (./Weblogic.fuzz.txt) = f975386520eb1b1cb5f5cb413eba00f7
MD5 (./Websphere.fuzz.txt) = d33f3124f9fc6ad34d5a513c3dbee531
MD5 (./WordPress.txt) = 84ec405357fae86f90dead834ce1b9dc
MD5 (./WordPress_v3.5.txt) = 462ed01c5d675e7d99c1c6742f482536
MD5 (./WordlistSkipfish.fuzz.txt) = e5209d7d41d5679be5797af3be934f1a
MD5 (./Z-blog.txt) = 0cf778b268ede0ac7086b72a5aea2243
MD5 (./admin.txt) = 5c2c22be2249de4e0210633cbf585184
MD5 (./admin的副本.txt) = 5c2c22be2249de4e0210633cbf585184
MD5 (./admin的副本2.txt) = e09959a886fa3ba64d31d7e1ac64f2d9
MD5 (./admin的副本3.txt) = e09959a886fa3ba64d31d7e1ac64f2d9
MD5 (./all.txt) = 6cafc26ebb40516bdc3326cff3026e27
MD5 (./apache) = 4b2ee9701c5c4f0ffdb7b323a913dc12
MD5 (./apache.txt) = 13435d952e822c59c12a1c87e645312c
MD5 (./api.txt) = a369e4b1e9a3fc3a398836931c5e33f4
MD5 (./asp) = 393a96d42a982d52426de676c66b52ea
MD5 (./asp.list) = a4577abf414e7cf9d64b1c9e63fef5b6
MD5 (./asp.txt) = d41d8cd98f00b204e9800998ecf8427e
MD5 (./asp2.txt) = 283b7c6c06ab69b1ce6fbbc5938583e4
MD5 (./aspx) = 07ba3305d824158f13b76ae3bab38c89
MD5 (./aspx.list) = 7fd732effcdff57d468561469dc21454
MD5 (./aspx.txt) = d41d8cd98f00b204e9800998ecf8427e
MD5 (./aspx2.txt) = 9ff35a7bca648cece4272b76ddb18226
MD5 (./aspx3.txt) = 7c39330bc9dfbc0d0fa8b180fc2c1480
MD5 (./aspx的副本10.txt) = 3ffa247222a0c351bbf37679a618d13c
MD5 (./aspx的副本14.txt) = 6388950de4a2db9e79a0f5a7c178bab9
MD5 (./aspx的副本2.txt) = 2f83fe23c21be6a4676137018e2354b3
MD5 (./aspx的副本5.txt) = efadedd8cda8651234a80914364d019d
MD5 (./aspx的副本7.txt) = 42f900061b35c1e952e6b943e6ff3ac7
MD5 (./aspx的副本9.txt) = e8a40fe17606b3f5049617d91d79ec1e
MD5 (./asp字典.txt) = 884a10d322a90c27067e023a7b661490
MD5 (./asp的副本.txt) = 18ad15361a9986679a00fc55b097b172
MD5 (./asp的副本10.txt) = 2a0e1b1703b173764a5e00a886115b3b
MD5 (./asp的副本14.txt) = 73f3775db7b0d100b83ad12bfc380f0a
MD5 (./asp的副本2.txt) = b667ff073cbbca1c2af060202cb05f7a
MD5 (./asp的副本3.txt) = a48d08333e8bb17a9bc3f4889214fca5
MD5 (./asp的副本5.txt) = d531d5ed7a61b16c95bf76263c59d519
MD5 (./asp的副本7.txt) = b5cee47c39fbca12dbfd6c46307dc121
MD5 (./axis) = 191523ff2c80234da2f7f86bc1a01cc0
MD5 (./axis.txt) = 9db312f74470239c941f6caf1743bfae
MD5 (./axis2.txt) = cf4d9b1a490e42641bc93ecdc0e4cc27
MD5 (./axis2的副本.txt) = cf4d9b1a490e42641bc93ecdc0e4cc27
MD5 (./backup) = e23edcd9438b8595432c161a715b4613
MD5 (./backup.preffixs) = 29850f6c0974c4907856e83600512671
MD5 (./backup.suffixs) = 550ffb70023aa900500492749949b084
MD5 (./blueCMS v1.6 sp1 ad_js.php SQL注入漏洞.txt) = c1f647adf248ec497c7c1d015ed95593
MD5 (./caobox_cms) = a0324c1859701322c444ff4ba3ef85f4
MD5 (./cfm&cgi.txt) = 0f7c0a0cd44be1b2ca9292ca59867206
MD5 (./cgi.list) = 31407a46f74b2ea626795f0501161b85
MD5 (./cgi.lists) = 155528155d717cb14f2e6473249519d7
MD5 (./cgi.txt) = 93452241609df06ad5b02aab327bc7ef
MD5 (./cgi_bin.txt) = 17daf322b06614f01a21edb9f03485fb
MD5 (./cgis) = d2d6433279f2c37c22d43d975e58f92a
MD5 (./check.txt) = 5071a42ba00ee96ee1fe25a21eec049c
MD5 (./ckeditor) = 1d3fc46304ad6e81b4a5eff9c822bcec
MD5 (./cms.txt) = 8094607c7522a322d6db1d0effdf6006
MD5 (./coldfusion) = 1b27819f7d4d0e2406222344f3e467b5
MD5 (./common.txt) = 38bf4520f74a72ed11608fe63f117ff7
MD5 (./copy_of.fuzz.txt) = cc1f1961972daf82d89ca38dcce44ecc
MD5 (./ctf) = 673765d95fa6b667ee73d2f380c66018
MD5 (./custom.txt) = edba0fecfb8936aec84ab95ae7df019d
MD5 (./db.list) = dc929b21c5995b19093444b995984a83
MD5 (./db.txt) = e9ab6214303f6d689d7fe47aba1ff533
MD5 (./dedev511SQLi.txt) = 1f7d9772c9b50717ba68336589659a36
MD5 (./dedev513GBKSQLi.txt) = e1693d506a12e45a095cf5dae15e9125
MD5 (./dedev562urlforward.txt) = 136269f1b73e1e9c0600dd037d6bc738
MD5 (./dedev563SQLi.txt) = 8a8d7131d3e6723332d1b0fdcdd881d5
MD5 (./dedev568SQli.txt) = 29eb86a94250c1edc59cbfa3b11cb236
MD5 (./default.list) = bb1f93dfae46bd4406d5ab840d3b2315
MD5 (./dicc-用这个.txt) = 7d9831838ab5b21c4c93162015fea694
MD5 (./dict.txt) = e07d62127af50b34f67e005e4472f3d6
MD5 (./dict_mode_dict.txt) = 4accf0bf9b05d79aeb61e2fc926e2297
MD5 (./dict的副本.txt) = 06926c4b88a98381195a49cbecb58e25
MD5 (./dir) = e1e185a4703a2ccf252e3606d0270d0d
MD5 (./dir.list) = 5f1c7a03efdb80049c378e07d638fd62
MD5 (./dir2.txt) = 7678f4b1f45394a8d01204e69fa00d36
MD5 (./dir4.txt) = 2700e07672e02cf84072b02675234e06
MD5 (./dir_test.txt) = ac8ebb05937b6c73666afe4949ba9012
MD5 (./directory-list-1.0.txt) = bf228cfbb027238c8c91fd4af9dbf5fa
MD5 (./directory-list-2.3-big.txt) = 5940bd95b145cf4f667f2da7e773dd8a
MD5 (./directory-list-2.3-medium.txt) = a4ec451b9005a14327f820385fdd2b6f
MD5 (./directory-list-2.3-small.txt) = 14839077abff215029e2d016bc66542c
MD5 (./directory-list-lowercase-2.3-big.txt) = 14895c4c52b4c7d13c0eb835ed1dd506
MD5 (./directory-list-lowercase-2.3-medium.txt) = 87e2209245fa82a80a9952f1fca7c98f
MD5 (./directory-list-lowercase-2.3-small.txt) = b28bf25177f5e5dca006c07e1e69364d
MD5 (./dirs.txt) = 91e06f86be4eb00f85fae45aafc666c0
MD5 (./dirs2.txt) = 58c90b412bedd96d8ba854332af435b5
MD5 (./dir的副本12.txt) = 97018286c4c512d8a92b4e238cd635f7
MD5 (./dir的副本4.txt) = ed17856f0ef2dd98ff70069af61d4ff2
MD5 (./dir的副本5.txt) = b8117237dbe40fc5d0abbd529d45b2ef
MD5 (./dir的副本6.txt) = f12ca0d85f4e8c44f42da8513a82121f
MD5 (./dir的副本7.txt) = 355a24ddb726d7a1505e2e203aae9aa8
MD5 (./dir的副本8.txt) = 84b323288b75eb36435f9b14c136a4fd
MD5 (./discuz备份.txt) = 0db6c9925c53349b8fef2fcf3a8924a7
MD5 (./discuz备份的副本.txt) = 0db6c9925c53349b8fef2fcf3a8924a7
MD5 (./domino) = fd82624ce6b690ad51f318321e95ae99
MD5 (./drupal_plugins) = 2f1aec885abd5294ab20820c407c2bce
MD5 (./drupal_themes) = 9751d74a8aab356dc3e93204149a7e31
MD5 (./drupal_themes.fuzz.txt) = 9751d74a8aab356dc3e93204149a7e31
MD5 (./easy_path.txt) = 7cdd1533ffd2e9b249757de9ade0775b
MD5 (./ecshop 注入通杀2.6-2.7 GBK版本.txt) = 70f6270a230908fdc4aca51fc9d1f9e3
MD5 (./ecshop爆绝对路径的bug 0day.txt) = 315747e7d611012a677cb87c83e7d48c
MD5 (./edit.list) = 2d224aac3f3904ca4a67b7872995be0a
MD5 (./ewebeditor.txt) = f8e01ff5750274bb97efde704a79d049
MD5 (./ewebeditor的副本.txt) = f8e01ff5750274bb97efde704a79d049
MD5 (./ewebeditor的副本2.txt) = a64e82af8692b02e793633f3c4a09797
MD5 (./extensions.txt) = c5ba5931243cafdac378ffe062fe8564
MD5 (./fatwire) = 351a2170a7cebd15ca68de4fcc8622a4
MD5 (./fatwire_pagenames) = 0c4d86037eae49fa28566182e1c34e28
MD5 (./fck-dir-max.txt) = 2bd1569ee0b27c11c1cfd3195d5da9e9
MD5 (./fck-dir-max的副本.txt) = 2bd1569ee0b27c11c1cfd3195d5da9e9
MD5 (./fck-dir-min.txt) = 5fff1297b252b6197c5413bec18b04ee
MD5 (./fck-dir-min的副本.txt) = 5fff1297b252b6197c5413bec18b04ee
MD5 (./fck-path.txt) = 1298b26384fe251913cf2959ce478f5f
MD5 (./fck-path的副本.txt) = 1298b26384fe251913cf2959ce478f5f
MD5 (./fck.txt) = 79c0eef0db9bc46d4253afc16cf7b3bf
MD5 (./fck的副本.txt) = 79c0eef0db9bc46d4253afc16cf7b3bf
MD5 (./fck的副本2.txt) = f4651a6b38c2e77f6ed49ccd54658d93
MD5 (./files.txt) = c2f6c40b1b5dfc63ea73a3fb03e87522
MD5 (./fnf_fuzz) = 7ecff1ff91e837925967a0403cc0f5e1
MD5 (./fuzz.txt) = c206f813628bfae79405b5819dca9641
MD5 (./fuzz_mode_dir.txt) = 4bb77fbc0db413df6e3027004c76b906
MD5 (./fuzz_mode_ext.txt) = 052f52552a86fc60cd3514a4b6bf1d6b
MD5 (./fuzz_mode_ext的副本.txt) = 052f52552a86fc60cd3514a4b6bf1d6b
MD5 (./glassfish.txt) = 3e135cc217d735c7c3abe4e193811de3
MD5 (./hpsmh) = 260367c29d0efb01c483d89f6f5b3e59
MD5 (./iis.txt) = 5a8ce8b53bf76226effba366e205a1fa
MD5 (./java) = f21b7dd2d7a60729633bb0acfd2b72ff
MD5 (./jboss.txt) = fad2795e5964a2625904d3a61cfd407b
MD5 (./joomla_plugins) = cdd74c3bf78a86c89ee6318c13813b91
MD5 (./joomla_plugins.fuzz.txt) = cdd74c3bf78a86c89ee6318c13813b91
MD5 (./joomla_themes) = 205ae87fe45c7b3529a7982a341775e5
MD5 (./joomla_themes.fuzz.txt) = 205ae87fe45c7b3529a7982a341775e5
MD5 (./jrun) = 775e66bc9a74f2b39d0f14a07736183b
MD5 (./jsp.list) = 6e84563755988e1058bf95870802f53a
MD5 (./jsp.txt) = 1b839203c212d47c66ffc1e27ce3572f
MD5 (./jsp2.txt) = cefdad482b757c675fa6ac76d298e3cc
MD5 (./jsp的副本.txt) = f5794d575978cf2e2f4e3217a8526c03
MD5 (./jsp的副本2.txt) = f0f6d7c5b123f26ab4cea3f80c227c91
MD5 (./jsp的副本3.txt) = 9eece7830b30b7fab45fd85fe5eea7a7
MD5 (./jsp的副本4.txt) = 9eece7830b30b7fab45fd85fe5eea7a7
MD5 (./jsp的副本5.txt) = fb00959605e20a15c042fa9aab184071
MD5 (./jsp的副本7.txt) = c4d69e9383d0c9f15c818629ff3a4a42
MD5 (./jsp的副本8.txt) = f5794d575978cf2e2f4e3217a8526c03
MD5 (./jsp的副本9.txt) = f5794d575978cf2e2f4e3217a8526c03
MD5 (./kentico_cms) = b167722a0636e0e59f0cf47dca98f083
MD5 (./login2.txt) = 862cc0aad752eaaf00988f28663f02f4
MD5 (./loudong-SEC.txt) = 92ca525541c61e4fcc8418bd073c39e2
MD5 (./mdb.txt) = 9b205d0e9d0ca6c2309689bc76343858
MD5 (./mdb2.txt) = 5f3135b71a8bb0a220d314196aa5e517
MD5 (./mdb的副本.txt) = e929d9c88a2a26cfa52e13e6066c140a
MD5 (./mdb的副本2.txt) = 5e4a776c4b13a3ddd3398af8157667bf
MD5 (./mdb的副本3.txt) = 5e4a776c4b13a3ddd3398af8157667bf
MD5 (./mdb的副本4.txt) = e891130565fe44270e2a5a4d53c1c97d
MD5 (./mdb的副本7.txt) = e929d9c88a2a26cfa52e13e6066c140a
MD5 (./mdb的副本8.txt) = e929d9c88a2a26cfa52e13e6066c140a
MD5 (./min.php.txt) = 0742b5fc790a8ca3c44b00bbff29803b
MD5 (./min.php2.txt) = 0742b5fc790a8ca3c44b00bbff29803b
MD5 (./my.md5) = d41d8cd98f00b204e9800998ecf8427e
MD5 (./netware) = 4a9b76976526a39c25a591126cc5a602
MD5 (./oracle) = ab38dafb26505bb11762d4dd1782ed90
MD5 (./pack.txt) = 09d9490aa9755779e10c77af21d38a38
MD5 (./path.txt) = f2e60046a92bbfc1408816ee934cfcd2
MD5 (./php) = 32621bad14ee61e60334a269bb1da148
MD5 (./php-nuke) = dd2357aa5f7fbff690e3dac720e255f5
MD5 (./php.list) = 15ef40a894df6b8fbed51bc9ff6eac98
MD5 (./php.txt) = 8f784f564abc12807ae43de7666dd9f9
MD5 (./php2.txt) = e2219869748e36d8057d077542484de6
MD5 (./phpcms_v9.5.7.txt) = a962648d1d6b287a9ce75258aa6c97a0
MD5 (./phpmyadmin.txt) = 113df866b83806f3f9d16d2e19a0683d
MD5 (./phpweb伪静态页面注入.txt) = d7cdb18f814aff5a08a09439bd34dbba
MD5 (./phpwind某注入.txt) = 0e45fc4572f2c5b2dc7878fa0e991c9d
MD5 (./php字典.txt) = 6dc094320ae6110bfc44412910ddc5a3
MD5 (./php的副本.txt) = 5edfa07b0a189145f5de653edccfc82d
MD5 (./php的副本11.txt) = 1b33ded29fecd64a217c0cafeedd0fed
MD5 (./php的副本15.txt) = a47d5349a67b407a7cd407b19399fb4d
MD5 (./php的副本2.txt) = dd16d787bb6874e72590b1875ed2ba2d
MD5 (./php的副本3.txt) = a61f097859601033225f78198e8f1b6f
MD5 (./php的副本5.txt) = c1c077420a5e3d881dc2f87ac9fb58a9
MD5 (./php的副本7.txt) = 81b005d893708382ca0ae488526c1f82
MD5 (./php字典的副本.txt) = 1076232dac98ab384f77a1341c5d1b42
MD5 (./port.txt) = 4fa38b21ba931a2d7afb1a2feeb6be13
MD5 (./portugese) = 45e205850359c51fc6f96564093df292
MD5 (./proxy-conf.fuzz.txt) = d203ba86976fbd6f009300123c4a80b6
MD5 (./raft-large-directories-lowercase.txt) = 2ab48172ccd813101aa573ffa717f821
MD5 (./raft-large-directories.txt) = eccd55b10b3c5110f5522cbbdc3040b4
MD5 (./raft-large-extensions-lowercase.txt) = a00015feaafffb1f29629157a08c608b
MD5 (./raft-large-extensions.txt) = ece7c60863bad3829dd8a57d12ffb219
MD5 (./raft-large-files-lowercase.txt) = 505f259221f9a4135824e888c94fe640
MD5 (./raft-large-files.txt) = 4e1b066fcffe8a4980c5a7fd82a18e76
MD5 (./raft-large-words-lowercase.txt) = 886059ccb5c1b267090bd45c97bf791c
MD5 (./raft-large-words.txt) = ba8345ecfbb5d7af6fda4de794005dc2
MD5 (./raft-medium-directories-lowercase.txt) = 3ef59d82ddb17cdf615ba7b32d1ff0d9
MD5 (./raft-medium-directories.txt) = dc1e7d401c046aa26f407875daa8d2e1
MD5 (./raft-medium-extensions-lowercase.txt) = 5a606ce3cd8939b338236837af4ca2a2
MD5 (./raft-medium-extensions.txt) = 7cb537929a8a3c45c953bd91da37c53b
MD5 (./raft-medium-files-lowercase.txt) = eb8372fce013f7c3753a9b0266762614
MD5 (./raft-medium-files.txt) = f136cb396b1a4e6dd6b5ca55a31ce368
MD5 (./raft-medium-words-lowercase.txt) = eaf989bde2eb80a318291be3c1bf50bf
MD5 (./raft-medium-words.txt) = 2279ed8bb70ad59d5d78b5bd48a4ea0b
MD5 (./raft-small-directories-lowercase.txt) = 30f5ab5d481e11e6d2becd942ca00e2d
MD5 (./raft-small-directories.txt) = 426e8c93caff1ed3d4ceda8bb6f0d4b8
MD5 (./raft-small-extensions-lowercase.txt) = ff11c977bcd5e967118faa2133d814a2
MD5 (./raft-small-extensions.txt) = 334c61f92f49beb62fe868bd6839e68b
MD5 (./raft-small-files-lowercase.txt) = 8acb3a46e15b25140dea842cb4f4b941
MD5 (./raft-small-files.txt) = e128e76ee6ec131cd04c6c0d78630bc4
MD5 (./raft-small-words-lowercase.txt) = 49e6506b875d13c28bc334b3de7602cc
MD5 (./raft-small-words.txt) = 756e133981dd70d734bc2029fde7d9e1
MD5 (./rar.list) = f548eedd9e012d705787c7a63c3f2217
MD5 (./rar.txt) = 79cea0975ae31e61634269b048317acc
MD5 (./readme.txt) = 0382179e9d4c9169092f42c18c715aae
MD5 (./ror) = edb04658325f8d3bed9736aee2d37c91
MD5 (./sap) = 76a239e685e7bdc38635fdf3f8b79669
MD5 (./sharepoint) = 6ea663ad8e366a6ddd18fc7bcfed0c89
MD5 (./shell.txt) = 42fb24c1e143898802b4090c579358ff
MD5 (./sitemap_magento) = 0f65e444d7ef434d6f7572aae5ae22cd
MD5 (./small.txt) = 6c9a6f0579a8c435f0353c9e05d09c43
MD5 (./spanish) = 6335ef3e12ceaa5618d18476fd7672ef
MD5 (./sunas) = 288ebdd2cb165e80cf0fd41c9b651439
MD5 (./test.txt) = 3181114af74bc357804236fe969ca0c8
MD5 (./test2.txt) = 3181114af74bc357804236fe969ca0c8
MD5 (./tftp) = f730bde0fd369ba5742a5afd252e1a04
MD5 (./tftp.fuzz.txt) = f730bde0fd369ba5742a5afd252e1a04
MD5 (./tomcat) = f9286c32f086c914ae8c72e6bc21723d
MD5 (./tomcat.txt) = b9e45eabc21dfbab3da7d9ced76fcb77
MD5 (./top.txt) = e58180c9df933e4a3744e88b77c434f7
MD5 (./txt.list) = da4b7a2f3cf598a878892e05d7734c1f
MD5 (./txt.txt) = 397661f30c8666b243ccee704b74a8d1
MD5 (./uniq) = b9aada223397e2aee3ac937b5dd1014d
MD5 (./uniq2) = 34068c4aead49e855f8e35b7b31e6106
MD5 (./upfile.txt) = 6c8f445577431e5a918e199415316405
MD5 (./vignette) = ab9b53adc680ca5bb41fc52cafd4753e
MD5 (./was5目录遍历.txt) = a0c9e4fb7ba6599dbcaedc9e498c73c2
MD5 (./web_dir.dic) = f3258357ccad83bf936402ca8f8eb451
MD5 (./web_path.dic) = 205a3407899bd9cf388f76a9c059e45e
MD5 (./weblogic) = f0725bcf7a5740ef5c5eee697b6bd3f6
MD5 (./weblogic.txt) = 7ba3b111c2fd1ba35cd75dd7625c79b7
MD5 (./websphere) = 1fd9b262b1b6ac8ca2c9ad50adc1542d
MD5 (./websphere.txt) = 83c48f7f3e1c3b692a56ad061e8ff841
MD5 (./wordpress) = 794cc0805e34a9685fe5a4c21f4f9874
MD5 (./wordpress 3.1.3 注入漏洞.txt) = 420666ce44dacc65b01f949783a3e502
MD5 (./wordpress后门shell字典.txt) = b3453994d946c764ccebc5c079156b2e
MD5 (./wp_plugins) = a222ba8b2a2dd8d4f090a023c27de5c8
MD5 (./wp_themes) = 915df490019e8aa8e0ad1fd2ebee49e2
MD5 (./wplogin.txt) = f2b612210e4d513cafa271ce158f3577
MD5 (./wplogin的副本.txt) = f2b612210e4d513cafa271ce158f3577
MD5 (./z.txt) = cdc0af8a9c8d0fbacf9b0f3fc9d8ecd7
MD5 (./新建 文本文档.txt) = f2692e8ee7ff12ebe749d10f366ce34d
MD5 (./动科(dkcms).txt) = d6163db0a2f1dce8d5214129402057dd
MD5 (./文件+上传+数据库1000条.txt) = 64d53e00d5c57e243695b810f4267077
MD5 (./后台+目录.txt) = 510c28d40c4a2c562baa3ea5fcd95e8b
MD5 (./全部.txt) = 2d12a7dbb23e8ba9116147c99dd7dfe2
MD5 (./后台.txt) = e11c3298b98fa13ec7f8ecf28d422622
MD5 (./备份.txt) = 31938dd025f86cd75188c942f7d95588
MD5 (./易迅.txt) = 4a95acdae07e18d343e6e13c0e12812f
MD5 (./特殊.txt) = f41332f4e9adaf8c6b80cd7544f24542
MD5 (./目录.txt) = 6d394ff18b516d73136ac34c3c630ea5
MD5 (./类型.txt) = a7f4b89834e2eef67b565e79886093f6
MD5 (./织梦.txt) = caaf895d9430ff9243e384d82a6b8f4c
MD5 (./综合.txt) = 08652e1dc5f3a1a8f9cfe426a4495753
MD5 (./风讯.txt) = fece3407eff018d170c651be30d62413
MD5 (./高危.txt) = 91c377ae7c1bef7b5ed8d419996fa044
MD5 (./整理0day.txt) = 641b40b39b86e860c7a6d58ec4c1e0ba
MD5 (./全部2.txt) = 41b773c9dc9ab6d52bdb12d0061e65c6
MD5 (./高危2.txt) = 91c377ae7c1bef7b5ed8d419996fa044
MD5 (./逐浪CMS3.2 0.txt) = 89f124b0b4d1938e238b6a9988b640db
MD5 (./帝国CMS5.txt) = 9a6d4933aac7295ee9fcd9b485c02eb3
MD5 (./帝国cms_V7.0.txt) = 78e8ec87d964ce3e18f4cae1c2ca34d6
MD5 (./数据库.txt) = ee82801577e50dce26a97d19e83af171
MD5 (./编辑器.txt) = 91d743fe83b1e5733da146ba764e81f6
MD5 (./网站目录+后台地址.txt) = f35941a4b1481cdd31c7c561f95149bd
MD5 (./南方数据.txt) = 70554b2f1e9bf59d963fb0918f913220
MD5 (./后台路径.txt) = e6833173df4819ffe3fc709fcb88df4d
MD5 (./常规路径.txt) = 9801f92bd21e6c341b5ecabf5ccdfe08
MD5 (./我的字典.txt) = aab013d4e65b604f855320d4853b0839
MD5 (./提纯目录.txt) = 411c40052ff74c1fc681053fdad6adc9
MD5 (./综合字典.txt) = e314fa6eb46042075c243404ae61a504
MD5 (./综合目录.txt) = b68838c46ae025ac2d8556e74cbf626b
MD5 (./综合高危.txt) = 0c6afa82de1e7e5c9633a45f0409d4ac
MD5 (./网站备份.txt) = 8cf7c6e295fd47a74415f0d188423704
MD5 (./网站目录1.txt) = d6987bc5e881ba114bb83b34598b9c59
MD5 (./网站目录600条.txt) = f0932e89b6e6d6503654ab836e201e5c
MD5 (./不常用目录.txt) = 5f2aafd705a20565f2c30b932eba1890
MD5 (./备份的副本.txt) = 7950f90a7b653f717d93474868d1ad2d
MD5 (./数据库地址.txt) = f20c43a4e5993844bc9cd59cb6bbcafc
MD5 (./数据库路径.txt) = 85a6bbbc1de900aa7c6d2aba4f06d8b4
MD5 (./文件字典(136).txt) = fd626b92373d393727a9395e1bf145c1
MD5 (./数据库地址2.txt) = b24f2cf937eeb7f1e0ef362da5b58cac
MD5 (./专业备份扫描.txt) = fe02062f604c61e2abfcd0bf0bdec1ba
MD5 (./常见高危文件.txt) = c7f910f4ce990001f1d83688038319b3
MD5 (./精简优化字典.txt) = a934871e86a69857d9ce729ba3072bb6
MD5 (./精简文件字典.txt) = 8b40cf92ee59ccc1ea810012c0ed8b23
MD5 (./超全目录字典.txt) = f2893bf5acc6ee8b421f552864300517
MD5 (./带路径字典(1486).txt) = 25fc68ad41d86abf35b8c617d8f2e4dd
MD5 (./新云管理系统6.0.txt) = f874323ae93dc793369e740237a3b372
MD5 (./在线编辑器路径.txt) = 40b5c26526962f1f2ebbc538b9072933
MD5 (./备份文件的副本.txt) = 612577820bfdf3f30433c50a6bb40fe4
MD5 (./精简带路径字典.txt) = 52df0fab6c4ac064f1f19f352ec4bd3a
MD5 (./网站备份的副本.txt) = 8cf7c6e295fd47a74415f0d188423704
MD5 (./备份文件的副本2.txt) = 7b487dfcf8a9fea950ed10af7a820ea2
MD5 (./自己做扫后门字典.txt) = e625423622bca4b6ffca9f106560321b
MD5 (./常见高危文件的副本.txt) = c7f910f4ce990001f1d83688038319b3

0x03 字典分离

区分字典中文件与目录

def classFiles(input="1.txt"):
    with open(input) as fr, open("Dir.txt", "w+") as fw, open("Files.txt", "w+") as fw1:
        for each in fr:
            if '.' in each.strip():
                fw1.write(each.strip() + "\n")
            else:
                fw.write(each.strip() + "\n")

0x04 格式统一

根据后缀进行文件分类,然后合并把文件、目录格式进行统一。

def checkFiles(input="db.txt", flag=".db"):
    with open(input) as fr, open("new_db.txt", "w+") as fw, open("check.txt", "w+") as fw1:
        for line in fr:
            if (line.strip().startswith("/")) and (line.strip().endswith(flag)):
                fw.write(line.replace("//", "/").replace("//", "/").replace("//", "/").strip() + "\n")
            elif not line.startswith("/"):
                tmp = "/" + line.strip()
                if flag in tmp:
                    fw.write(tmp.replace("//", "/").replace("//", "/").replace("//", "/").strip() + "\n")
                else:
                    fw1.write(tmp.strip() + "\n")
            else:
                fw1.write(line.strip() + "\n")

def cleanFiles(input="1.txt"):
    count = 0
    suffixs = [".php", ".asp", ".jsp", ".aspx", ".txt", ".html", ".txt", ".doc", ".py", ".zip", ".rar", ".7z", ".bak",
               ".mdb", ".sql", ".tgz", ".tar.gz"]
    lines = open(input).readlines()
    for line in lines:
        if line.strip().lower().endswith(".tar"):
            with open("tar" + ".txt", "a+") as fw:
                fw.write(line.strip() + "\n")
        else:
            with open("other.txt", "a+") as fw1:
                fw1.write(line.strip() + "\n")

def cleanDir(input="Dir.txt"):
    with open(input) as fr, open("new_dir.txt", "w+") as fw:
        for line in fr:
            tmp = "/" + line.strip() + "/"
            fw.write(tmp.replace("//", "/").replace("//", "/").replace("//", "/").replace("//", "/").replace("//",
                                                                                                             "/").strip() + "\n")

0x04 排序提取

处理 ???、{}、// 等杂类数据后,再根据出现的词频sort test.txt | uniq -c | sort -rn | cut -c 6- > php.txt进行排序,并
根据一些关键字,例login、upload、cms等细分一些字典、然后选取每个文件的Top字典+关键字字典+常用敏感的文件配置等生成综合高频字典。


0x05 新增生成

新增字典文件之前验证文件md5值是否添加过,如果没添加直接在原始文件上合并去重计算词频再次生成,以及根据常见的扩展、文件名根据实际渗透站点再生成Fuzz字典。