-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Is a custom word list okay to add to the repository? #43
Comments
Add answers to some questions posed in #43.
Hi, and thanks for your interest in expanding this project! New wordlists are certainly a welcome addition, and having them auto-generated is not a must – so far they're all rendered by scripts because I was simply too lazy to ever craft one manually 😅 I've addressed some of your follow-up questions in fed05e1 – TLDR: static lists in ./wordlists/ are okay, try to add multiple smaller lists rather than one big. Also, it's fine to extend existing scripts for e.g. brands.words and acronyms.words to pull words from somewhere else (IDK, maybe a script-embedded list? a separate static "include" file?) to enrich their scrapped output with extra words ;) Let me know if you have any more questions :) |
To which word list should I add words that are used in various fields and difficult to classify? (e.g. "resize" and "despawn") In my opinion, the existing word lists are already chaotic. The word "iterator" is in So, how about creating a new word list like |
Hi! I've been checking and adding words to an internal dictionary which we've used in our penetration testing reports, blog posts, etc. the last years, when a colleague pointed out that I should maybe just be using a better dictionary than the default one and pointed me here :)
Many of these words, such as cryptographically, canonicalized, satisfiable, and transpiling, are not yet in this repository, so I want to contribute/consolidate those. I have no automatically updating source for them (and we certainly could not publish customers' reports for the project to scrape words from 😅), so my question is whether you are interested in including a list of custom words that does not get automatic updates. The words are split out into:
sudo
,rsync
), attacks (Heartbleed, Clickjacking), encodings (Base64), etc., few of which seem to be in the repository.If yes, follow-up questions are:
./wordlists/
is considered to be automatically generated, I could simply make a script that does no more than echoing the words. Alternatively, a plain text file could be included among the generated word lists, perhaps with a comment on top that indicates it is custom.The text was updated successfully, but these errors were encountered: