Find Secret Files using dirb

What is Dirb

DIRB is a Web Content Scanner. It looks for existing (and/or hidden) Web Objects. It basically works by launching a dictionary-based attack against a web server and analyzing the responses.

DIRB comes with a set of preconfigured attack wordlists for easy usage but you can use your custom wordlists. Also, DIRB sometimes can be used as a classic CGI scanner, but remember that it is a content scanner, not a vulnerability scanner.

DIRB’s main purpose is to help in professional web application auditing. Especially in security-related testing. It covers some holes not covered by classic web vulnerability scanners. DIRB looks for specific web objects that other generic CGI scanners can’t look for. It doesn’t search for vulnerabilities nor does it look for web content that can be vulnerable.

Download and Install

sudo apt install dirb

Use

dirb https://ip-address /usr/share/wordlists/dirb/common.txt

Thanks for reading

Tags: dirb examples kali, dirb kali, dirb kali linux, how to use dirb in kali, how to use dirb in kali linux, kali dirb, kali dirb wordlist, kali tools dirb, running dirb kali, what is dirb in kali