Enumération Web

gobuster

Installation via go

Depuis la 23.04, gobuster est installé par défaut sur Kali.

┌──(kali㉿kali)-[~]
└─$ sudo apt install golang-go
┌──(kali㉿kali)-[~]
└─$ go install github.com/OJ/gobuster/v3@latest
┌──(kali㉿kali)-[~]
└─$ cat << EOF >> $HOME/.profile
#### set PATH so it includes user's private go-bin if it exists
if [ -d "$HOME/go/bin" ] ; then
    PATH="$HOME/go/bin:$PATH"
fi
EOF
┌──(kali㉿kali)-[~]
└─$ source $HOME/.profile

gobuster dir

┌──(kali㉿kali)-[~/Precious]
└─$ gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://$name

Gobuster dir => Error 302 au lieu de 404

Error: the server returns a status code that matches the provided options for non existing urls. http://Precious/63a2d7f8-11d8-44fe-86c6-6a445fa16b57 => 302 (Length: 145). To continue please exclude the status code or the length

┌──(kali㉿kali)-[~/Precious]
└─$ gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://$name --exclude-length 145

Gobuster dir => SSL avec mauvais certificat

┌──(kali㉿kali)-[~/Sense]
└─$ gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -k -u https://$ip

GOBuster dir => Go Deeper

┌──(kali㉿kali)-[~/Sense]
└─$ gobuster dir -w /usr/share/wordlists/seclists/Discovery/Web-Content/raft-large-files-lowercase.txt -u http://$name

Wfuzz

Wfuzz Host

┌──(kali㉿kali)-[~/Knife]
└─$ wfuzz -c -w /usr/share/wordlists/seclists/Discovery/DNS/subdomains-top1million-5000.txt  -H "Host:FUZZ.$name.$domain" --hl 220 http://$name.$domain

Wfuzz dir

┌──(kali㉿kali)-[~/Knife]
└─$ wfuzz -c -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --hl 220 http://$name.$domain/FUZZ

Wfuzz User-Agent

┌──(kali㉿LuKaLi)-[~/Agentsudoctf]
└─$ wfuzz  -c -w /usr/share/wordlists/seclists/Usernames/Names/names.txt -H "User-Agent: FUZZ" --hl 18 http://$name.$domain

Wfuzz Alphabet

┌──(kali㉿LuKaLi)-[~/Agentsudoctf]
└─$ wfuzz -c -z list,A-B-C-D-E-F-G-H-I-J-K-L-M-N-O-P-Q-R-S-T-U-V-W-X-Y-Z -H "User-Agent: FUZZ" http://$name.$domain