WebDirScan
WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & directories recursively. It's written in Go and it's capable of multithreaded scanning.
Use Case
- For Developers - Suppose, you are having a web server & want to know which of the files & directories are accessible to public.
- For Security Researchers & BugBounty hunters - When testing for On-Premise products, you can hunt for sensitive directories & files for profit
🤑 !!!
Installation
go install github.com/jayateertha043/[email protected]
Installation from Source
- Install Golang: https://golang.org/doc/install
- Clone this repository: git clone https://github.com/jayateertha043/WebDirScan.git
- Change to the directory where you cloned the repository: cd WebDirScan
- Build the executable: go build
- You can now run the executable: ./WebDirScan
Usage
Usage of WebDirScan:
-dir string
Input Directory (default ".")
-domain string
Enter domain to scan (default "localhost")
-headers string
To use Custom Headers headers.json file
-http string
Enter HTTP ports (comma-separated)
-https string
Enter HTTPS ports (comma-separated)
-out string
Output Directory (default ".")
-threads int
Number of Threads (default 100)
-timeout int
Timeout for Request in Seconds (default 10)
-verbose
Verbose Output
Author
- Twitter: @jayateerthaG
- Github: @jayateertha043
License
WebDirScan is licensed under the MIT License. See LICENSE for more information.