Active Enumeration

Directory Enumeration

Quick pre enumeration: 

feroxbuster --url <URL> -w /usr/share/seclists/Discovery/Web-Content/quickhits.txt  -o ferox-dir-enum
 -o web-directories.txt

Detailed enumeration:

feroxbuster --url <URL> -w /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-big.txt -o web-directories.txt

DNS Enumeration

gobuster dns -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-110000.txt -d <DOMAIN> -o web-subdomains.txt --timeout 10s

VHOST Enumeration

ffuf -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-110000.txt -u <URL> -H "Host: FUZZ.<DOMAIN>" -o web-vhosts.txt -fc 302 -fs <SIZE_200_RESPONSE>

File Exploration

// Some code
Previous445 - SMBNextPassive Enumeration

Last updated

Was this helpful?