🩸
Pentesting Checklist
  • 👀General Checklist
    • 👁️Recon & Scanning
      • Nmap Scan
    • 🌡️Services
      • SSH
      • FTP
      • Samba
      • Git
      • SNMP
    • ⚙️Reverse Engineering
      • General
      • Android apks
      • Windows Exe or .net binaries
  • 🐞Web Application Checklist
    • 🧠Web App Attack Techniques
      • Password Smuggling Attack
    • 😍Fuzzing with ffuf
    • 💄Directory Fuzzing
      • Using the tools
      • Wordlists to use
    • 👾Subdomain Fuzzing
      • Normal fuzzing
      • Finding through DNS
    • 🎯LFI/RCE
      • LFI
        • What to do once obtained
      • RCE
      • Misc
  • ☕Linux Checklist
    • Page 2
  • 🪟Windows Checklist
    • 💀Windows Connection Methods
  • 🖇️Tips & Tricks
    • Transferring Files
      • 🐧Linux
      • 📸Windows
    • Pivoting / Lateral Movement Techniques
      • proxychains
      • chisel
      • sshuttle
      • ligolo-ng
    • 🧩Fuzzing
    • 🙃Credential Brute-Forcing
  • 🍒Other useful resources:
    • Page 7
Powered by GitBook
On this page
  1. Web Application Checklist
  2. Directory Fuzzing

Using the tools

Different tools for directory fuzzing for different uses

My recommendations

  • For a long scan that is most likely going to find what you need

    • gobuster dir -u (url) -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -x txt,php -t 200 -o dirs.txt

  • Shorter scan but gets a lot

    • gobuster dir -u (url) -w /usr/share/seclists/Discovery/Web-Content/raft-small-words.txt -x txt,php -t 200 -o dirs.txt

Other options

  • Full scan for files as well instead of just directories (might take a while)

    • ffuf -w /usr/share/seclists/Discovery/Web-Content/raft-small-words.txt -u http://url/FUZZ -recursion -c -t 200

PreviousDirectory FuzzingNextWordlists to use

Last updated 2 years ago

🐞
💄