DIRB – Domain Brute-forcing Tool


DIRB is a Web Content Scanner AKA a domain brute-forcing tool. It looks for existing (and/or hidden) Web Objects, it works by launching a dictionary based attack against a web server and analysing the responses.

DIRB - Domain Brute-forcing Tool


What is DIRB?

DIRB comes with a set of preconfigured attack word-lists for easy usage but you can use your custom word-lists. Also it can sometimes can be used as a classic CGI scanner, but do remember this is a content scanner not a vulnerability scanner.

There are other tools with similar functionalities such as:

Patator – Multi-threaded Service & URL Brute Forcing Tool
dirs3arch – HTTP File & Directory Brute Forcing Tool
DirBuster – Brute Force Directories & Files Names

And tools that can accomplish the same or similar things like:

Wfuzz v1.4 Released for Download – Bruteforcing & Fuzzing Web Applications

DIRB Usage For Domain Brute-forcing

You can download DIRB the domain brute force tool here:

dirb222.tar.gz

Or read more here.

Posted in: Hacking Tools

,


Latest Posts:


Fuzzilli - JavaScript Engine Fuzzing Library Fuzzilli – JavaScript Engine Fuzzing Library
Fuzzilii is a JavaScript engine fuzzing library, it's a coverage-guided fuzzer for dynamic language interpreters based on a custom intermediate language.
OWASP APICheck - HTTP API DevSecOps Toolset OWASP APICheck – HTTP API DevSecOps Toolset
APICheck is an HTTP API DevSecOps toolset, it integrates existing tools, creates execution chains easily and is designed for integration with 3rd parties.
trident - Automated Password Spraying Tool trident – Automated Password Spraying Tool
The Trident project is an automated password spraying tool developed to be deployed on multiple cloud providers and provides advanced options around scheduling
tko-subs - Detect & Takeover Subdomains With Dead DNS Records tko-subs – Detect & Takeover Subdomains With Dead DNS Records
tko-subs is a tool that helps you to detect & takeover subdomains with dead DNS records, this could be dangling CNAMEs point to hosting services and more.
Arcane - Tool To Backdoor iOS Packages (iPhone ARM) Arcane – Tool To Backdoor iOS Packages (iPhone ARM)
Arcane is a simple script tool to backdoor iOS packages (iPhone ARM) and create the necessary resources for APT repositories.
SharpHose - Asynchronous Password Spraying Tool SharpHose – Asynchronous Password Spraying Tool
SharpHose is an asynchronous password spraying tool in C# for Windows environments that takes into consideration fine-grained password policies and can be run over Cobalt Strike's execute-assembly.


3 Responses to DIRB – Domain Brute-forcing Tool

  1. a_servant March 8, 2016 at 1:31 am #

    And the difference with DirBuster would be… ?

    • Darknet March 8, 2016 at 1:41 am #

      There are lots of tools with similar functionalities (port scanners, vuln scanners, dir scanners etc etc etc), I’m here to provide options. If you want to start a blog comparing similar tools, please go ahead and let me know – I’d be interested to read it :)

  2. droppin dimeZ March 12, 2016 at 11:53 am #

    it’s the same tool…DirBuster is the gui version