dirsearch is a Python-based command-line website directory scanner designed to brute force site structure including directories and files in websites.
dirsearch Website Directory Scanner Features
dirsearch supports the following:
- Multithreaded
- Keep alive connections
- Support for multiple extensions (-e|–extensions asp,php)
- Reporting (plain text, JSON)
- Heuristically detects invalid web pages
- Recursive brute forcing
- HTTP proxy support
- User agent randomization
- Batch processing
- Request delaying
dirsearch Web Directory Structure Scanner & Wordlists
Dictionaries must be text files. Each line will be processed as such, except that the special word %EXT%
is used, which will generate one entry for each extension (-e | --extension
) passed as an argument.
Example:
1 2 |
example/ example.%EXT% |
Passing the extensions “asp
” and “aspx
” will generate the following dictionary:
1 2 3 |
example/ example.asp example.aspx |
You can also use -f | --force-extensions
switch to append extensions to every word in the wordlists (like DirBuster).
You can find a great selection of Password List Download Best Word List – Most Common Passwords here.
You can download dirsearch here:
Or read more here.
bughunter says
https://github.com/cujanovic/Content-Bruteforcing-Wordlist
Darknet says
Oh nice, thanks.