Python tool for enumerating directories and for fuzzing

Last update: Feb 21, 2022

Related tags

Overview

dirEnum

Python tool for enumerating directories and for fuzzing

Download the tool with following command from shell:

git clone https://github.com/confusedHatHacker/dirEnum

After cloning change directories and go to dirEnum folder. Run the following command from shell:

pip install -r requirements.txt

Usage instructions: python dirEnum.py -u -w [options]

Optional arguments for dirEnum

optional arguments:
  -h, --help        show this help message and exit
  -u , --url        Enter url[:port] to scan
  -w , --wordlist   Enter wordlist location
  -e , --ext        Enter extensions to scan (eg., php,html)
  -t , --threads    Enter number of threads
  -m , --mode       choose between FUZZ (fuzzing) or DIR(directory enumeration) [Default: dir]

Examples:

python dirEnum.py -u 192.168.0.1 -w wordlist.txt -m dir -e php,html,txt -t 20
python dirEnum.py -u 192.168.0.1 -w wordlist.txt -m fuzz -t 20

Please note: For fuzzing change mode with -m option, by default it is in dir mode/does directory enumeration.

Owner

Gourab Roy

Love to code

GitHub Repository

proof-of-concept running docker container from omero web

docker-from-omero-poc proof-of-concept running docker container from omero web How-to Edit test_script.py so that the BaseClient is created pointing t

2 Jan 22, 2022

Scout Suite - an open source multi-cloud security-auditing tool,

Description Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using t

5k Jan 05, 2023

Cve-2022-23131 - Cve-2022-23131 zabbix-saml-bypass-exp

cve-2022-23131 cve-2022-23131 zabbix-saml-bypass-exp replace [zbx_signed_session

135 Dec 14, 2022

Python tool for exploiting CVE-2021-35616

OracleOTM Python tool for exploiting CVE-2021-35616 The script works in modules, which I implemented in the following order: ► Username enumeration ►

11 Dec 06, 2022

D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

Introduction fork from https://gitlab.com/eshard/d810 What is D-810 D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation

30 Dec 06, 2022

Compilation of resources and insights that helped me on my journey to data scientist

1.5k Jan 02, 2023

An auxiliary tool for iot vulnerability hunter

firmeye - IoT固件漏洞挖掘工具 firmeye 是一个 IDA 插件，基于敏感函数参数回溯来辅助漏洞挖掘。我们知道，在固件漏洞挖掘中，从敏感/危险函数出发，寻找其参数来源，是一种很有效的漏洞挖掘方法，但程序中调用敏感函数的地方非常多，人工分析耗时费力，通过该插件，可以帮助排除大部分的安全

171 Nov 28, 2022

This tool was created in order to automate some basic OSINT tasks for penetration testing assingments.

This tool was created in order to automate some basic OSINT tasks for penetration testing assingments. The main feature that I haven't seen much anywhere is the downloadd google dork function where t

5 May 31, 2022

Vuln Scanner With Python

VulnScanner Features Web Application Firewall (WAF) detection. Cross Site Scripting (XSS) tests. SQL injection time based test. SQL injection error ba

1 Dec 25, 2021

Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead (< v3.6.5) if the CGI is enabled and a CGI program is dynamically linked.

GoAhead RCE Exploit Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead ( v3.6.5) if the CGI is enabled and a CGI program is dynamic

2 Dec 12, 2021

The best Python Backdoor👌

Backdoor The best Python Backdoor Files Server file is used in all of cases If client is Windows, the client need execute EXE file If client is Linux,

13 Oct 28, 2022

A signature parser for hikari's command handler tanjun.

tanchi A signature parser for hikari's command handler tanjun. Finally be able to define your commands without those bloody decorator chains! Example

11 Nov 17, 2022

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service. This tool can help a digital forensic investigator to know the conte

96 Dec 20, 2022

Python tool for enumerating directories and for fuzzing

Related tags

Overview

dirEnum

Owner

Gourab Roy

proof-of-concept running docker container from omero web

Scout Suite - an open source multi-cloud security-auditing tool,

Cve-2022-23131 - Cve-2022-23131 zabbix-saml-bypass-exp

Python tool for exploiting CVE-2021-35616

D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

Compilation of resources and insights that helped me on my journey to data scientist

An auxiliary tool for iot vulnerability hunter

This tool was created in order to automate some basic OSINT tasks for penetration testing assingments.

Vuln Scanner With Python

Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead (< v3.6.5) if the CGI is enabled and a CGI program is dynamically linked.

The best Python Backdoor👌

A signature parser for hikari's command handler tanjun.

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service

A windows post exploitation tool that contains a lot of features for information gathering and more.

A small script to export all AWAF policies from a BIG-IP device

Js File Scanner This is Js File Scanner

Python exploit code for CVE-2021-4034 (pwnkit)

Anti-Nuke capabilities, powerful moderation features, auto punishments, captcha-verification and more.

Bypass's HCaptcha by overloading their api causing it to throwback a generated uuid. (Released due to exposure)

log4j2 passive burp rce scanning tool get post cookie full parameter recognition