It’s a simple command-line python-based website directory/path scanner that can brute-force any targeted site for its directory and files. This is a very common job in pen-testing and dirsearch do this job much faster than the traditional DIRB. It is a mush have tool in our Kali Linux machine.
Now with Kali Linux 2021.2 DirSearch comes pre-installed with a kali-Linux-full image or we can download it by applying the following command:
sudo apt install dirsearch -y
After installing it, we can check the help options of dirsearch by using the following command:
dirsearch -hThe above command will show us the help menu of dirsearch as we can see on the following screenshot:
Now it’s time to use dirsearch. For example, we assume that google.com is our target and we need to check its` directory and files. We use the following command: dirsearch -u google.com -e aspx,php
Here we look for only php and aspx files, and we have specified our target URL using the -u flag.
After running the above command we can see that dirsearch started its work as we can see on the following screenshot:
The time to scan is depending on our target website’s size. When it is finished, we can see a “Task Completed” message on our terminal, as we can see in the following screenshot:
On the above screenshot, we can see that dirsearch searched for tons of paths and directories on our target website. We might get a suspicious or sensitive page from here, but a good bounty hunter or pen tester will gather more information about every location or manually check everything.
Vulnerabilities can be anywhere.
Dirsearch also saves the generated output file on a text format (plain, JSON, XML, MD, CSV), the default format is txt. We can see the path of saved output on the upper side (need to scroll up) of the terminal, shown on the following screenshot:
This is how we can search for hidden and sensitive directories using dirsearch on our Kali Linux system. Dirseach is faster than then infamous tool DIRB.
Comments