Skip to content
/ directorybrute Public

Directorybrute is a directory and file brute-force tool designed to discover hidden directories and files on web servers using HTTP requests.

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

D1se0/directorybrute

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
README.md
README.md
 
 
directorybrute.py
directorybrute.py
 
 
guie_commands.txt
guie_commands.txt
 
 
requeriments.sh
requeriments.sh
 
 

Repository files navigation

Directorybrute

Directorybrute is a directory and file brute-force tool designed to discover hidden directories and files on web servers using HTTP requests.

Directorybrute

Features

  • Directory and file brute-forcing on web servers.
  • Support for both HTTP and HTTPS.
  • Option to specify a custom list of directories.
  • Detailed result reporting.

Installation

To install Directorybrute, follow these steps:

Clone the repository from GitHub:

git clone https://github.com/D1se0/directorybrute.git

Navigate into the cloned repository directory:

cd directorybrute

Install the required dependencies:

./requirements.txt

or

pip3 install requests colorama tqdm

Usage

To run Directorybrute, use the following command from the command line:

python3 directorybrute.py [-u URL] [-w WORDLIST] [--hp HIDDEN-PROTOCOL] [-x EXTENSIONS] [-t THREADS] [-f FILE]

Parameters

-h, --help = show this help message and exit

-w WORDLIST, --wordlist WORDLIST = Path to the wordlist for brute-forcing.

-t THREADS, --threads THREADS = Number of concurrent threads (optional, default is 10).

-u URL, --url URL = URL with BRUTE where it will be replaced to perform brute force (for example, "example.com/BRUTE").

--https = Use https instead of http.

--hp HP, --hide-status HP = Hide specific HTTP status codes (for example, "200,202").

--hw HW, --hide-size HW = Hide specific content sizes (for example, "128,256").

-x EXTENSIONS, --extensions EXTENSIONS = Extensions to try, separated by commas (e.g. "txt,html,php").

--hd, --hidden-directories = Add a period in front of each word to discover hidden directories or files.

-f FILE, --file FILE = File name to export the results.

Example usage:

python3 directorybrute.py -u http://example.com/BRUTE -w [WORDLIST] --hp "404" -x "txt,html,php"

Examples

Here are examples demonstrating the execution process and obtained results:

Running Directorybrute against a website:

python3 directorybrute.py -u http://example.com/BRUTE -w [WORDLIST] --hp "404"

Running with a custom wordlist and more concurrent threads:

python3 directorybrute.py -u https://example.com -w [WORDLIST] --hp "404" -x "txt,html,php" -t 30

Contributing

Contributions are welcome! Please fork the repository and submit a pull request with your changes.

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

Directorybrute is a directory and file brute-force tool designed to discover hidden directories and files on web servers using HTTP requests.

Topics

linux command-line commands hacking pentesting kali-linux ethical-hacking pentesters redteam cibersecurity hackingetico

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages