diff --git a/HTTP/callback.txt b/HTTP/callback.txt new file mode 100644 index 0000000..0b357b3 --- /dev/null +++ b/HTTP/callback.txt @@ -0,0 +1,10 @@ +callback=mstkey +cb=mstkey +jsonp=mstkey +jsonpcallback=mstkey +jsonpcb=mstkey +jsonp_cb=mstkey +json=mstkey +jsoncallback=mstkey +jcb=mstkey +call=mstkey diff --git a/HTTP/debug_param_name.txt b/HTTP/debug_param_name.txt new file mode 100644 index 0000000..a04130b --- /dev/null +++ b/HTTP/debug_param_name.txt @@ -0,0 +1,40 @@ +7357=1 +7357=true +7357=y +7357=yes +access=1 +access=true +access=y +access=yes +adm=1 +adm1n=1 +adm1n=true +adm1n=y +adm1n=yes +admin=1 +admin=true +admin=y +admin=yes +adm=true +adm=y +adm=yes +dbg=1 +dbg=true +dbg=y +dbg=yes +debug=1 +debug=true +debug=y +debug=yes +edit=1 +edit=true +edit=y +edit=yes +grant=1 +grant=true +grant=y +grant=yes +test=1 +test=true +test=y +test=yes diff --git a/HTTP/errors.txt b/HTTP/errors.txt new file mode 100644 index 0000000..82db0a3 --- /dev/null +++ b/HTTP/errors.txt @@ -0,0 +1,97 @@ +</font><font face="Arial" size=2> +A syntax error has occurred +Active Server Pages error +ADODB.Field error +An illegal character has been found in the statement +An unexpected token "END-OF-STATEMENT" was found +ASP.NET is configured to show verbose error messages +ASP.NET_SessionId +Can't connect to local +CLI Driver +Custom Error Message +data source= +database error +DB2 Driver +DB2 Error +DB2 ODBC +detected an internal error +detected an internal error [IBM][CLI Driver][DB2/6000] +Died at +Disallowed Parent Path +error +Error converting data type varchar to numeric +Error Diagnostic Information +Error Message : Error loading required libraries. +Error Report +Fatal error +include_path +Incorrect syntax near +Index of +Internal Server Error +Invalid Path Character +Invalid procedure call or argument +invalid query +Invision Power Board Database Error +is not allowed to access +JDBC Driver +JDBC Error +JDBC MySQL +JDBC Oracle +JDBC SQL +line +Microsoft OLE DB Provider for ODBC Drivers +Microsoft VBScript compilation error +Microsoft VBScript error +missing expression +mix of collations +MySQL Driver +mysql error +MySQL Error +mySQL error with query +MySQL ODBC +ODBC DB2 +ODBC Driver +ODBC Error +ODBC Microsoft Access +ODBC Oracle +ODBC SQL +ODBC SQL Server +OLE/DB provider returned message +on line +on MySQL result index +ORA-0 +ORA-1 +Oracle DB2 +Oracle Driver +Oracle Error +Oracle ODBC +Parent Directory +Permission denied: 'GetObject' +PHP Error +PHP Parse error +PHP Warning +PostgreSQL query failed: ERROR: parser: parse error +server at +server object error +SQL command not properly ended +SQL Server Driver +SQL Server Driver][SQL Server +SQLException +supplied argument is not a valid MySQL result resource +Supplied argument is not a valid PostgreSQL result +Syntax error in query expression +The error occurred in +The script whose uid is +Type mismatch +Unable to jump to row +Unclosed quotation mark before the character string +unexpected end of SQL command +unexpected error +Unterminated string constant +Warning: Cannot modify header information - headers already sent +Warning: mysql_query +Warning: mysql_query() +Warning: pg_connect +Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL +Warning: Supplied argument is not a valid File-Handle resource in +You have an error in your SQL syntax near diff --git a/README.md b/README.md index 2805496..996e56b 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,20 @@ ## 更新记录 +**2021.01.13** + +1. 增加callback参数字典 + +2. 增加常见报错信息字符串列表 + +3. 增加debug参数字典 + +4. 增加snmap密码字典 + +5. 增加weblogic常见用户名密码 + +6. 增加oracle用户名、密码字典 + **2021.01.04** 1. 增加DefaultCreds-cheat-sheet @@ -293,4 +307,6 @@ * [https://crackstation.net/crackstation-wordlist-password-cracking-dictionary.htm](https://crackstation.net/crackstation-wordlist-password-cracking-dictionary.htm) -* [https://github.com/ihebski/DefaultCreds-cheat-sheet](https://github.com/ihebski/DefaultCreds-cheat-sheet) \ No newline at end of file +* [https://github.com/ihebski/DefaultCreds-cheat-sheet](https://github.com/ihebski/DefaultCreds-cheat-sheet) + +* [https://github.com/epony4c/Exploit-Dictionary](https://github.com/epony4c/Exploit-Dictionary) \ No newline at end of file diff --git a/Service/oracle/oracle_logins.txt b/Service/oracle/oracle_logins.txt new file mode 100644 index 0000000..817b3ae --- /dev/null +++ b/Service/oracle/oracle_logins.txt @@ -0,0 +1,486 @@ +abm +adams +adldemo +admin +administrator +ahl +ahm +ak +alhro +alhrw +alr +ams +amv +andy +anonymous +ap +applmgr +applsys +applsyspub +applysyspub +apps +apps_mrc +appuser +aq +aqdemo +aqjava +aquser +ar +asf +asg +asl +aso +asp +ast +atm +audiouser +aurora$jis$utility$ +aurora$orb$unauthenticated +ax +az +bc4j +ben +bic +bil +bim +bis +biv +bix +blake +blewis +bom +brio_admin +brugernavn +brukernavn +bsc +bug_reports +calvin +catalog +cct +cdemo82 +cdemocor +cdemorid +cdemoucb +cdouglas +ce +centra +central +cids +cis +cisinfo +clark +clkana +clkrt +cn +company +compiere +cqschemauser +cquserdbuser +crp +cs +csc +csd +cse +csf +csi +csl +csmig +csp +csr +css +ctxdemo +ctxsys +cua +cue +cuf +cug +cui +cun +cup +cus +cz +data_schema +dbi +dbsnmp +dbvision +dcm +ddic +demo +demo8 +demo9 +des +des2k +dev2000_demos +diane +dip +discoverer5 +discoverer_admin +dmsys +dpf +dsgateway +dssys +dtsp +eaa +eam +earlywatch +east +ec +ecx +ejb +ejsadmin +emp +eng +eni +estoreuser +event +evm +example +exfsys +extdemo +extdemo2 +fa +fem +fii +finance +finprod +flm +fnd +foo +fpt +frm +frosty +fte +fv +gl +gma +gmd +gme +gmf +gmi +gml +gmp +gms +gpfd +gpld +gr +hades +hcpark +hlw +hr +hri +hvst +hxc +hxt +iba +ibe +ibp +ibu +iby +icdbown +icx +idemo_user +ieb +iec +iem +ieo +ies +ieu +iex +ifssys +igc +igf +igi +igs +igw +imageuser +imc +imedia +imt +internal +#internal +inv +ipa +ipd +iplanet +isc +itg +ja +jake +je +jg +jill +jl +jl +jmuser +john +jones +jtf +jtm +jts +jward +kwalker +l2ldemo +lbacsys +librarian +manprod +mark +mascarm +master +mddata +mddemo +mddemo_clerk +mddemo_mgr +mdsys +me +mfg +mgr +mgwuser +migrate +miller +mmo2 +modtest +moreau +mrp +msc +msd +mso +msr +mtssys +mts_user +mwa +mxagent +names +neotix_sys +nneul +nomeutente +nome_utilizador +nom_utilisateur +nume_utilizator +oaihub902 +oas_public +ocitest +ocm_db_admin +odm +odm_mtr +ods +odscommon +ods_server +oe +oemadm +oemrep +oem_repository +okb +okc +oke +oki +oko +okr +oks +okx +olapdba +olapsvr +olapsys +omwb_emulation +ont +oo +openspirit +opi +oracache +oracle +oradba +orange +oraprobe +oraregsys +orasso +orasso_ds +orasso_pa +orasso_ps +orasso_public +orastat +orcladmin +ordcommon +ordplugins +ordsys +ose$http$admin +osm +osp22 +ossaq_host +ossaq_pub +ossaq_sub +ota +outln +owa +owapub +owa_public +owf_mgr +owner +ozf +ozp +ozs +pa +panama +patrol +paul +perfstat +perstat +pjm +planning +plex +plsql +pm +pmi +pn +po +po7 +po8 +poa +pom +portal +portal30 +portal30_admin +portal30_demo +portal30_ps +portal30_public +portal30_sso +portal30_sso_admin +portal30_sso_ps +portal30_sso_public +portal_app +portal_demo +portal_public +portal_sso_ps +pos +powercartuser +primary +psa +psb +psp +pubsub +pubsub1 +pv +qa +qdba +qp +qs +qs_adm +qs_cb +qs_cbadm +qs_cs +qs_es +qs_os +qs_ws +re +repadmin +rep_manager +reports +reports_user +rep_owner +rep_user +rg +rhx +rla +rlm +rmail +rman +rrs +sample +sap +sapr3 +scott +sdos_icsap +secdemo +serviceconsumer1 +sh +si_informtn_schema +siteminder +slide +spierson +ssp +starter +strat_user +swpro +swuser +sympa +sys +sysadm +sysadmin +sysman +system +tahiti +talbot +tdos_icsap +tec +test +testpilot +test_user +thinsample +tibco +tip37 +tracesvr +travel +tsdev +tsuser +turbine +uddisys +ultimate +um_admin +um_client +user +user0 +user1 +user2 +user3 +user4 +user5 +user6 +user7 +user8 +user9 +user_name +usuario +utility +utlbstatu +vea +veh +vertex_login +videouser +vif_developer +viruser +vpd_admin +vrr1 +webcal01 +webdb +webread +websys +webuser +west +wfadmin +wh +wip +wireless +wkadmin +wkproxy +wk_proxy +wksys +wk_sys +wk_test +wkuser +wms +wmsys +wob +wps +wsh +wsm +www +wwwuser +xademo +xdb +xdp +xla +xnc +xni +xnm +xnp +xns +xprt +xtr diff --git a/Service/oracle/oracle_passwords.txt b/Service/oracle/oracle_passwords.txt new file mode 100644 index 0000000..d5f5451 --- /dev/null +++ b/Service/oracle/oracle_passwords.txt @@ -0,0 +1,490 @@ +06071992 +0racl3 +0racl38 +0racl38i +0racl39 +0racl39i +0racle +0racle8 +0racle8i +0racle9 +0racle9i +199220706 +abm +adgangskode +adldemo +admin +administrator +ahl +ahm +airoplane +ak +akf7d98s2 +alr +ams +amv +anonymous +ap +applmgr +applsys +applsyspub +apppassword +apps +aq +aqdemo +aqjava +aquser +ar +asf +asg +asl +aso +asp +ast +audiouser +ax +az +bar +bc4j +ben +bic +bil +bim +bis +biv +bix +blewis +bom +brio_admin +bsc +bug_reports +catalog +cct +cdemo82 +cdemo83 +cdemocor +cdemorid +cdemoucb +cdouglas +ce +centra +central +change_on_install +cids +cis +cisinfo +clave +clerk +cloth +cn +company +compiere +crp +cs +csc +csd +cse +csf +csi +csl +csmig +csp +csr +css +ctxdemo +ctxsys +cua +cue +cuf +cug +cui +cun +cup +cus +cz +dbsnmp +dbvision +demo +demo8 +demo9 +des +des2k +dev2000_demos +dip +discoverer_admin +dmsys +dpfpass +dsgateway +dssys +d_syspw +d_systpw +dtsp +eaa +eam +east +ec +ecx +ejb +ejsadmin +ejsadmin_password +emp +eng +eni +estore +event +evm +example +exfsys +extdemo +extdemo2 +fa +fem +fii +finance +finprod +flm +fnd +fndpub +fpt +frm +fte +fv +gl +gma +gmd +gme +gmf +gmi +gml +gmp +gms +gpfd +gpld +gr +hades +hcpark +hlw +hobbes +hr +hri +hvst +hxc +hxt +iba +ibe +ibp +ibu +iby +icdbown +icx +idemo_user +ieb +iec +iem +ieo +ies +ieu +iex +ifssys +igc +igf +igi +igs +igw +imageuser +imc +imedia +imt +instance +inv +invalid +<invalid> +invalid password +ipa +ipd +iplanet +isc +itg +ja +je +jetspeed +jg +jl +jl +jmuser +john +jtf +jtm +jts +kwalker +l2ldemo +laskjdf098ksdaf09 +lbacsys +manag3r +manager +manprod +mddata +mddemo +mddemo_mgr +mdsys +me +mfg +mgr +mgwuser +migrate +miller +mmo2 +mmo3 +moreau +mot_de_passe +mrp +msc +msd +mso +msr +mt6ch5 +mtrpw +mts_password +mtssys +mumblefratz +mwa +mxagent +names +neotix_sys +nneulpass +oas_public +ocitest +ocm_db_admin +odm +ods +odscommon +ods_server +oe +oemadm +oemrep +oem_temp +okb +okc +oke +oki +oko +okr +oks +okx +olapdba +olapsvr +olapsys +ont +oo +openspirit +opi +oracache +oracl3 +oracle +oracle8 +oracle8i +oracle9 +oracle9i +oradbapass +oraprobe +oraregsys +orasso +orasso_ds +orasso_pa +orasso_ps +orasso_public +orastat +ordcommon +ordplugins +ordsys +osm +osp22 +ota +outln +owa +owa_public +owf_mgr +owner +ozf +ozp +ozs +pa +panama +paper +parol +passwd +passwo1 +passwo2 +passwo3 +passwo4 +password +patrol +paul +perfstat +perstat +pjm +planning +plex +pm +pmi +pn +po +po7 +po8 +poa +pom +portal30 +portal30_admin +portal30_demo +portal30_ps +portal30_public +portal30_sso +portal30_sso_admin +portal30_sso_ps +portal30_sso_public +portal31 +portal_demo +portal_sso_ps +pos +powercartuser +primary +psa +psb +psp +pub +pubsub +pubsub1 +pv +qa +qdba +qp +qs +qs_adm +qs_cb +qs_cbadm +qs_cs +qs_es +qs_os +qs_ws +re +repadmin +reports +rep_owner +rg +rhx +rla +rlm +rmail +rman +rrs +sample +sampleatm +sap +sapr3 +sdos_icsap +secdemo +senha +serviceconsumer1 +sh +shelves +si_informtn_schema +siteminder +slidepw +snowman +spierson +ssp +starter +steel +strat_passwd +supersecret +support +swordfish +swpro +swuser +sympa +sys +sysadm +sysadmin +sysman +syspass +sys_stnt +system +systempass +tahiti +tdos_icsap +tectec +test +testpilot +test_user +thinsamplepw +tibco +tiger +tigger +tip37 +trace +travel +tsdev +tsuser +turbine +ultimate +um_admin +um_client +unknown +<unknown> +user +user0 +user1 +user2 +user3 +user4 +user5 +user6 +user7 +user8 +user9 +utility +utlestat +vea +veh +vertex_login +videouser +vif_dev_pwd +viruser +vrr1 +vrr2 +webcal01 +webdb +webread +welcome +west +wfadmin +wh +wip +wkadmin +wkproxy +wksys +wk_test +wkuser +wms +wmsys +wob +wood +wps +wsh +wsm +www +wwwuser +xademo +xdp +xla +xnc +xni +xnm +xnp +xns +xprt +xtr +xxx +yes +your_pass +zwerg diff --git a/Service/snmp/Snmp_password.txt b/Service/snmp/Snmp_password.txt new file mode 100644 index 0000000..8c48e73 --- /dev/null +++ b/Service/snmp/Snmp_password.txt @@ -0,0 +1,119 @@ +public +private +0 +0392a0 +1234 +2read +4changes +ANYCOM +Admin +C0de +CISCO +CR52401 +IBM +ILMI +Intermec +NoGaH$@! +OrigEquipMfr +PRIVATE +PUBLIC +Private +Public +SECRET +SECURITY +SNMP +SNMP_trap +SUN +SWITCH +SYSTEM +Secret +Security +s!a@m#n$p%c +Switch +System +TENmanUFactOryPOWER +TEST +access +adm +admin +agent +agent_steal +all +all private +all public +apc +bintec +blue +c +cable-d +canon_admin +cc +cisco +community +core +debug +default +dilbert +enable +field +field-service +freekevin +fubar +guest +hello +hp_admin +ibm +ilmi +intermec +internal +l2 +l3 +manager +mngt +monitor +netman +network +none +openview +pass +password +pr1v4t3 +proxy +publ1c +read +read-only +read-write +readwrite +red +regional +rmon +rmon_admin +ro +root +router +rw +rwa +san-fran +sanfran +scotty +secret +security +seri +snmp +snmpd +snmptrap +solaris +sun +superuser +switch +system +tech +test +test2 +tiv0li +tivoli +trap +world +write +xyzzy +yellow diff --git a/Service/weblogic/weblogic_creds.txt b/Service/weblogic/weblogic_creds.txt new file mode 100644 index 0000000..45cfed0 --- /dev/null +++ b/Service/weblogic/weblogic_creds.txt @@ -0,0 +1,8 @@ +system:password +weblogic:weblogic +admin:security +joe:password +mary:password +system:security +wlcsystem:wlcsystem +wlpisystem:wlpisystem