dirsearch
Web path scanner
Details
Category: Discovery
Publisher: trickest
Created Date: 6/23/2021
Container: quay.io/trickest/dirsearch:2d21d63
Source URL: https://github.com/maurosoria/dirsearch
Parameters
ip
string
Command:
--ip
- Server IP addressraw
file
Command:
--raw
- Load raw HTTP request from file (use '--scheme' flag to set the scheme)tor
boolean
Command:
--tor
- Use Tor network as proxyurl
string
requiredCommand:
--url
- Target URL(s), can use multiple flagsauth
string
Command:
--auth
- Authentication credential (e.g. user:password or bearer token)cidr
string
Command:
--cidr
- Target CIDRdata
string
Command:
--data
- HTTP request datacrawl
boolean
Command:
--crawl
- Crawl for new paths in responsesdelay
string
Command:
--delay
- Delay between requestsproxy
string
Command:
--proxy
- Proxy URL (HTTP/SOCKS), can use multiple flagsconfig
file
Command:
--config
- Path to configuration filecookie
string
Command:
--cookie
- Cookieformat
string
Command:
--format
- Report format (Available: simple,plain,json,xml,md,csv,html,sqlite,mysql,postgresql)header
string
Command:
--header
- HTTP request header, can use multiple flagsscheme
string
Command:
--scheme
- Scheme for raw request or if there is no scheme in the URL (Default: auto-detect)capital
boolean
Command:
--capital
- Capital wordlistretries
string
Command:
--retries
- Number of retries for failed requestssession
file
Command:
--session
- Session filesubdirs
string
Command:
--subdirs
- Scan sub-directories of the given URL[s] (separated by commas)threads
string
Command:
--threads
- Number of threadstimeout
string
Command:
--timeout
- Connection timeoutfull-url
boolean
Command:
--full-url
- Full URLs in the output (enabled automatically in quiet mode)key-file
file
Command:
--key-file
- File contains client-side certificate private key (unencrypted)max-rate
string
Command:
--max-rate
- Max requests per secondmax-time
string
Command:
--max-time
- Maximum runtime for the scanno-color
boolean
Command:
--no-color
- No colored outputprefixes
string
Command:
--prefixes
- Add custom prefixes to all wordlist entries (separated by commas)suffixes
string
Command:
--suffixes
- Add custom suffixes to all wordlist entries, ignore directories (separated by commas)wordlist
file
Command:
--wordlists
- Wordlist fileauth-type
string
Command:
--auth-type
- Authentication type (basic, digest, bearer, ntlm, jwt)cert-file
file
Command:
--cert-file
- File contains client-side certificatedata-file
file
Command:
--data-file
- File contains HTTP request datainterface
string
Command:
--interface
- Network interface to uselowercase
boolean
Command:
--lowercase
- Lowercase wordlistrecursive
boolean
Command:
--recursive
- Brute-force recursivelyuppercase
boolean
Command:
--uppercase
- Uppercase wordlisturls-file
file
Command:
--urls-file
- URL list filewordlists
folder
Command:
--wordlists
- Wordlists folderextensions
string
Command:
--extensions
- Extension list separated by commas (e.g. php,asp)proxy-auth
string
Command:
--proxy-auth
- Proxy authentication credentialquiet-mode
boolean
Command:
--quiet-mode
- Quiet modeuser-agent
string
Command:
--user-agent
- User agenthttp-method
string
Command:
--http-method
- HTTP method (default: GET)nmap-report
file
Command:
--nmap-report
- Load targets from nmap report (Ensure the inclusion of the -sV flag during nmap scan for comprehensive results)exclude-text
string
Command:
--exclude-text
- Exclude responses by text, can use multiple flagsheaders-file
boolean
Command:
--headers-file
- File contains HTTP request headersproxies-file
file
Command:
--proxies-file
- File contains proxy serversrandom-agent
boolean
Command:
--random-agent
- Choose a random User-Agent for each requestreplay-proxy
string
Command:
--replay-proxy
- Proxy to replay with found pathsexclude-regex
string
Command:
--exclude-regex
- Exclude responses by regular expressionexclude-sizes
string
Command:
--exclude-sizes
- Exclude responses by sizes, separated by commas (e.g. 0B,4KB)exit-on-error
boolean
Command:
--exit-on-error
- Exit whenever an error occursdeep-recursive
boolean
Command:
--deep-recursive
- Perform recursive scan on every directory depth (e.g. api/users -> api/)exclude-status
string
Command:
--exclude-status
- Exclude status codes, separated by commas, support ranges (e.g. 301,500-599)include-status
string
Command:
--include-status
- Include status codes, separated by commas, support ranges (e.g. 200,300-399)skip-on-status
string
Command:
--skip-on-status
- Skip target whenever hit one of these status codes, separated by commas, support rangesexclude-subdirs
string
Command:
--exclude-subdirs
- Exclude the following subdirectories during recursive scan (separated by commas)force-recursive
boolean
Command:
--force-recursive
- Do recursive brute-force for every found path, not only directoriesexclude-redirect
string
Command:
--exclude-redirect
- Exclude responses if this regex (or text) matches redirect URL (e.g. '/index.html')exclude-response
string
Command:
--exclude-response
- Exclude responses similar to response of this page, path as input (e.g. 404.html)follow-redirects
boolean
Command:
--follow-redirects
- Follow HTTP redirectsforce-extensions
boolean
Command:
--force-extensions
- Add extensions to the end of every wordlist entry. By default dirsearch only replaces the %EXT% keyword with extensionsrecursion-status
string
Command:
--recursion-status
- Valid status codes to perform recursive scan, support ranges (separated by commas)max-response-size
string
Command:
--max-response-size
- Maximum response lengthmin-response-size
string
Command:
--min-response-size
- Minimum response lengthredirects-history
boolean
Command:
--redirects-history
- Show redirects historyremove-extensions
boolean
Command:
--remove-extensions
- Remove extensions in all paths (e.g. admin.php -> admin)exclude-extensions
string
Command:
--exclude-extensions
- Exclude extension list separated by commas (e.g. asp,jsp)max-recursion-depth
string
Command:
--max-recursion-depth
- Maximum recursion depthoverwrite-extensions
boolean
Command:
--overwrite-extensions
- Overwrite other extensions in the wordlist with your extensions (selected via `-e`)