search

danielmiessler / SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
https://www.owasp.org/index.php/OWASP_Internet_of_Things_Project
MIT License
55.83k stars 23.57k forks source link

Do checklists have a place here? #504

Open apehex opened 3 years ago

apehex commented 3 years ago

Checklists, report templates and the likes help me to streamline my workflow, be systematic and learn.

Wouldn't be great to have checklists / templates consolidated for each security task here?

(I'm new to this field, please don't murder me if this is irrelevant ^^' )

g0tmi1k commented 3 years ago

Heya. Its a good idea - but I wouldn't say this is the place. Asking @danielmiessler and @jhaddix to weigh in here

apehex commented 3 years ago

hey there, thanks for the input :) I came across a note taking app for pentesting, they plan to integrate checklists from the get-go. Still I'd rather have the various checklists somewhere, then consolidated versions, and use it elsewhere, with or without an app.

apehex commented 3 years ago

Is it bad taste if I create a 'SecChecklists' repo? :grin: At first it'll be static checklists, but the name should change if I get to track the actual results / progress.

g0tmi1k commented 3 years ago

No no! Go for it - I like the idea! Can link to it in the README.md

pudgenuts commented 3 years ago

A Check list repo would indeed be valuable