DIRB – Domain Brute-forcing Tool


DIRB is a Web Content Scanner AKA a domain brute-forcing tool. It looks for existing (and/or hidden) Web Objects, it works by launching a dictionary based attack against a web server and analysing the responses.

DIRB - Domain Brute-forcing Tool


What is DIRB?

DIRB comes with a set of preconfigured attack word-lists for easy usage but you can use your custom word-lists. Also it can sometimes can be used as a classic CGI scanner, but do remember this is a content scanner not a vulnerability scanner.

There are other tools with similar functionalities such as:

Patator – Multi-threaded Service & URL Brute Forcing Tool
dirs3arch – HTTP File & Directory Brute Forcing Tool
DirBuster – Brute Force Directories & Files Names

And tools that can accomplish the same or similar things like:

Wfuzz v1.4 Released for Download – Bruteforcing & Fuzzing Web Applications

DIRB Usage For Domain Brute-forcing

You can download DIRB the domain brute force tool here:

dirb222.tar.gz

Or read more here.

Posted in: Hacking Tools

,


Latest Posts:


GKE Auditor - Detect Google Kubernetes Engine Misconfigurations GKE Auditor – Detect Google Kubernetes Engine Misconfigurations
GKE Auditor is a Java-based tool to detect Google Kubernetes Engine misconfigurations, it aims to help security & dev teams streamline the configuration process
zANTI - Android Wireless Hacking Tool Free Download zANTI – Android Wireless Hacking Tool Free Download
zANTI is an Android Wireless Hacking Tool that functions as a mobile penetration testing toolkit that lets you assess the risk level of a network using mobile.
HELK - Open Source Threat Hunting Platform HELK – Open Source Threat Hunting Platform
The Hunting ELK or simply the HELK is an Open-Source Threat Hunting Platform with advanced analytics capabilities such as SQL declarative language, graphing etc
trape - OSINT Analysis Tool For People Tracking Trape – OSINT Analysis Tool For People Tracking
Trape is an OSINT analysis tool, which allows people to track and execute intelligent social engineering attacks in real-time.
Fuzzilli - JavaScript Engine Fuzzing Library Fuzzilli – JavaScript Engine Fuzzing Library
Fuzzilii is a JavaScript engine fuzzing library, it's a coverage-guided fuzzer for dynamic language interpreters based on a custom intermediate language.
OWASP APICheck - HTTP API DevSecOps Toolset OWASP APICheck – HTTP API DevSecOps Toolset
APICheck is an HTTP API DevSecOps toolset, it integrates existing tools, creates execution chains easily and is designed for integration with 3rd parties.


3 Responses to DIRB – Domain Brute-forcing Tool

  1. a_servant March 8, 2016 at 1:31 am #

    And the difference with DirBuster would be… ?

    • Darknet March 8, 2016 at 1:41 am #

      There are lots of tools with similar functionalities (port scanners, vuln scanners, dir scanners etc etc etc), I’m here to provide options. If you want to start a blog comparing similar tools, please go ahead and let me know – I’d be interested to read it :)

  2. droppin dimeZ March 12, 2016 at 11:53 am #

    it’s the same tool…DirBuster is the gui version