dirsearch
Web path scanner
Details
Category: Discovery
Publisher: trickest
Created Date: 6/23/2021
Container: quay.io/trickest/dirsearch:2d21d63
Source URL: https://github.com/maurosoria/dirsearch
Parameters
ip
string
Command:
--ip - Server IP addressraw
file
Command:
--raw - Load raw HTTP request from file (use '--scheme' flag to set the scheme)tor
boolean
Command:
--tor - Use Tor network as proxyurl
string
requiredCommand:
--url - Target URL(s), can use multiple flagsauth
string
Command:
--auth - Authentication credential (e.g. user:password or bearer token)cidr
string
Command:
--cidr - Target CIDRdata
string
Command:
--data - HTTP request datacrawl
boolean
Command:
--crawl - Crawl for new paths in responsesdelay
string
Command:
--delay - Delay between requestsproxy
string
Command:
--proxy - Proxy URL (HTTP/SOCKS), can use multiple flagsconfig
file
Command:
--config - Path to configuration filecookie
string
Command:
--cookie - Cookieformat
string
Command:
--format - Report format (Available: simple,plain,json,xml,md,csv,html,sqlite,mysql,postgresql)header
string
Command:
--header - HTTP request header, can use multiple flagsscheme
string
Command:
--scheme - Scheme for raw request or if there is no scheme in the URL (Default: auto-detect)capital
boolean
Command:
--capital - Capital wordlistretries
string
Command:
--retries - Number of retries for failed requestssession
file
Command:
--session - Session filesubdirs
string
Command:
--subdirs - Scan sub-directories of the given URL[s] (separated by commas)threads
string
Command:
--threads - Number of threadstimeout
string
Command:
--timeout - Connection timeoutfull-url
boolean
Command:
--full-url - Full URLs in the output (enabled automatically in quiet mode)key-file
file
Command:
--key-file - File contains client-side certificate private key (unencrypted)max-rate
string
Command:
--max-rate - Max requests per secondmax-time
string
Command:
--max-time - Maximum runtime for the scanno-color
boolean
Command:
--no-color - No colored outputprefixes
string
Command:
--prefixes - Add custom prefixes to all wordlist entries (separated by commas)suffixes
string
Command:
--suffixes - Add custom suffixes to all wordlist entries, ignore directories (separated by commas)wordlist
file
Command:
--wordlists - Wordlist fileauth-type
string
Command:
--auth-type - Authentication type (basic, digest, bearer, ntlm, jwt)cert-file
file
Command:
--cert-file - File contains client-side certificatedata-file
file
Command:
--data-file - File contains HTTP request datainterface
string
Command:
--interface - Network interface to uselowercase
boolean
Command:
--lowercase - Lowercase wordlistrecursive
boolean
Command:
--recursive - Brute-force recursivelyuppercase
boolean
Command:
--uppercase - Uppercase wordlisturls-file
file
Command:
--urls-file - URL list filewordlists
folder
Command:
--wordlists - Wordlists folderextensions
string
Command:
--extensions - Extension list separated by commas (e.g. php,asp)proxy-auth
string
Command:
--proxy-auth - Proxy authentication credentialquiet-mode
boolean
Command:
--quiet-mode - Quiet modeuser-agent
string
Command:
--user-agent - User agenthttp-method
string
Command:
--http-method - HTTP method (default: GET)nmap-report
file
Command:
--nmap-report - Load targets from nmap report (Ensure the inclusion of the -sV flag during nmap scan for comprehensive results)exclude-text
string
Command:
--exclude-text - Exclude responses by text, can use multiple flagsheaders-file
boolean
Command:
--headers-file - File contains HTTP request headersproxies-file
file
Command:
--proxies-file - File contains proxy serversrandom-agent
boolean
Command:
--random-agent - Choose a random User-Agent for each requestreplay-proxy
string
Command:
--replay-proxy - Proxy to replay with found pathsexclude-regex
string
Command:
--exclude-regex - Exclude responses by regular expressionexclude-sizes
string
Command:
--exclude-sizes - Exclude responses by sizes, separated by commas (e.g. 0B,4KB)exit-on-error
boolean
Command:
--exit-on-error - Exit whenever an error occursdeep-recursive
boolean
Command:
--deep-recursive - Perform recursive scan on every directory depth (e.g. api/users -> api/)exclude-status
string
Command:
--exclude-status - Exclude status codes, separated by commas, support ranges (e.g. 301,500-599)include-status
string
Command:
--include-status - Include status codes, separated by commas, support ranges (e.g. 200,300-399)skip-on-status
string
Command:
--skip-on-status - Skip target whenever hit one of these status codes, separated by commas, support rangesexclude-subdirs
string
Command:
--exclude-subdirs - Exclude the following subdirectories during recursive scan (separated by commas)force-recursive
boolean
Command:
--force-recursive - Do recursive brute-force for every found path, not only directoriesexclude-redirect
string
Command:
--exclude-redirect - Exclude responses if this regex (or text) matches redirect URL (e.g. '/index.html')exclude-response
string
Command:
--exclude-response - Exclude responses similar to response of this page, path as input (e.g. 404.html)follow-redirects
boolean
Command:
--follow-redirects - Follow HTTP redirectsforce-extensions
boolean
Command:
--force-extensions - Add extensions to the end of every wordlist entry. By default dirsearch only replaces the %EXT% keyword with extensionsrecursion-status
string
Command:
--recursion-status - Valid status codes to perform recursive scan, support ranges (separated by commas)max-response-size
string
Command:
--max-response-size - Maximum response lengthmin-response-size
string
Command:
--min-response-size - Minimum response lengthredirects-history
boolean
Command:
--redirects-history - Show redirects historyremove-extensions
boolean
Command:
--remove-extensions - Remove extensions in all paths (e.g. admin.php -> admin)exclude-extensions
string
Command:
--exclude-extensions - Exclude extension list separated by commas (e.g. asp,jsp)max-recursion-depth
string
Command:
--max-recursion-depth - Maximum recursion depthoverwrite-extensions
boolean
Command:
--overwrite-extensions - Overwrite other extensions in the wordlist with your extensions (selected via `-e`)