切换风格

Wizard Sky California Sunset glow Black Cloud Beige Dragon Lavender NewYear City Snow Flowers London
收藏本站XSS平台字符串转换jsfuck
335 WEB List scanner DirBuster[复制链接]
发表于 2012-10-23 20:27:27 | 显示全部楼层 |!read_mode!
界面模式

坑爹数据太慢 居然17M下载了一小时 传道GOOGLE CODE 请用下面的链接下载

http://code.google.com/p/dis9-server/downloads/detail?name=DirBuster-0.12.tar.bz2&can=2&q=#makechanges

然后解压缩就能启动了


  1. root@Dis9Team:~/Desktop/DirBuster-0.12# java -jar DirBuster-0.12.jar
复制代码


结果:



导出结果



命令行模式查看帮助

  1. root@Dis9Team:~/Desktop/DirBuster-0.12# java -jar DirBuster-0.12.jar -h
  2. Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on
  3. DirBuster - 0.12
  4. Usage: java -jar DirBuster-0.12 -u <URL http://example.com/> [Options]

  5.         Options:
  6.          -h : Display this help message
  7.          -H : Start DirBuster in headless mode (no gui), report will be auto saved on exit
  8.          -l <Word list to use> : The Word list to use for the list based brute force. Default: /root/Desktop/DirBuster-0.12/directory-list-2.3-small.txt
  9.          -g : Only use GET requests. Default Not Set
  10.          -e <File Extention list> : File Extention list eg asp,aspx. Default: php
  11.          -t <Number of Threads> : Number of connection threads to use. Default: 10
  12.          -s <Start point> : Start point of the scan. Default: /
  13.          -v : Verbose output, Default: Not set
  14.          -P : Don't Parse html, Default: Not Set
  15.          -R : Don't be recursive, Default: Not Set
  16.          -r <location> : File to save report to. Default: /root/Desktop/DirBuster-0.12/DirBuster-Report-[hostname]-[port].txt

  17. Examples:

  18. Run DirBuster in headless mode
  19. java -jar DirBuster-0.12.jar -H -u https://www.target.com/

  20. Start GUI with target file prepopulated
  21. java -jar DirBuster-0.12.jar -u https://www.target.com/
  22. root@Dis9Team:~/Desktop/DirBuster-0.12#
复制代码
扫描:
  1. root@Dis9Team:~/Desktop/DirBuster-0.12# java -jar DirBuster-0.12.jar -H -u http://192.168.71.130/ -e php -l directory-list-1.0.txt -t 100
  2. Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on
  3. Starting OWASP DirBuster 0.12 in headless mode
  4. Starting dir/file list based brute forcing
  5. Dir found: /cgi-bin/ - 403
  6. Dir found: / - 200
  7. File found: /1.Gif - 200
  8. File found: /1.htm - 200
  9. File found: /1.pHp5 - 200
  10. File found: /1.php3 - 200
  11. File found: /1.php4 - 200
  12. File found: /1.php5 - 200
  13. File found: /1.txt - 200
  14. File found: /2.html - 200
  15. File found: /3.php - 200
  16. File found: /3.phpf - 200
  17. File found: /back.php - 200
  18. Dir found: /info/ - 200
  19. Dir found: /pen/ - 200
  20. Dir found: // - 200
  21. File found: /phpinfo.php - 200
  22. File found: /shell.php - 200
  23. File found: /shellcodeexec.x32 - 200
  24. File found: /tmpbakhx.php - 200
  25. File found: /tmpbzwoo.php - 200
  26. Dir found: /icons/ - 200
  27. File found: /tmpubkke.php - 200
  28. File found: /tmpuwydk.php - 200
  29. File found: /up1.php - 200
  30. File found: /up2.php - 200
  31. File found: /up3.html - 200
  32. File found: /up3.php - 200
  33. File found: /pen/news.php - 200
  34. File found: /up4.html - 200
  35. File found: /pen/file.php - 200
  36. File found: /up4.php - 200
  37. Dir found: /pen/share/ - 200
  38. File found: /v5 - 200
  39. Dir found: /info/ - 200
  40. File found: /pen/share/info.php - 200
  41. Dir found: /3/ - 200
复制代码

-e 指定后缀 -l 字典 -t 线程保存结果-r url.txt 例如:
  1. root@Dis9Team:~/Desktop/DirBuster-0.12# java -jar DirBuster-0.12.jar -H -u http://192.168.71.130/ -e php -l directory-list-1.0.txt -t 100 -r url.txt
复制代码



附件: 你需要登录才可以下载或查看附件。没有帐号?加入Team
操千曲而后晓声,观千剑而后识器。

代码区

GMT+8, 2020-9-28 10:25

Powered by Discuz! X2

© 2001-2018 Comsenz Inc.

回顶部