🎑Overview (fundamentals/cheatsheet)

cheatsheet

Port scanning

  • rustscan

rustscan -a $IP --ulimit 5000 -- -sC -sV | tee ports.scan

Directory bruteforcing

  • ffuf

ffuf -u http://$IP/FUZZ -w /usr/share/wordlists/SecLists/Discovery/Web-Content/big.txt 
  • gobuster

 gobuster dir -u http://$1/ -w /usr/share/wordlists/SecLists/Discovery/Web-Content/big.txt 

Subdomain bruteforcing

  • ffuf (vhost)

ffuf -u http://$subdomain/ -w /usr/share/wordlists/SecLists/Discovery/DNS/subdomains-top1million-5000.txt -H "Host: FUZZ.${subdomain}" 

Last updated