Skip to main content

Directory Listing

Dictionaries​

/usr/share/dirb/wordlists/common.txt (36k)
/usr/share/dirb/wordlists/big.txt (180K)
/usr/share/wfuzz/wordlist/general/common.txt (6.4K)
/usr/share/wfuzz/wordlist/general/big.txt (22K)
/usr/share/wfuzz/wordlist/general/megabeast.txt (401K)
/usr/share/dirbuster/wordlists/directory-list-lowercase-2.3-medium.txt (1,8M)
ls -lah /opt/SecLists/Discovery/Web-Content/
ls -lah /usr/share/dirbuster/wordlists/

Extensions

/opt/SecLists/Discovery/Web-Content/raft-large-extensions-lowercase.txt

Dirb​

dirb <url> (dico) -a "Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0" -X <.txt,.php,.html>

Gobuster​

gobuster -u <url> -c <'session=123456'> -t <threads> -w </usr/share/dirb/wordlists/common.txt> -a "Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0" -x <.txt,.php,.html>

Wfuzz​

wfuzz -c -z file,</usr/share/wfuzz/wordlist/general/megabeast.txt> --hc 404 <url>/FUZZ

Nikto​

User-Agent

/etc/nikto.conf
USERAGENT=Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
nikto (-C all) -h <url/ip>