๐ธ๏ธWeb Footprinting
WhatWeb
whatweb <target ip>
Internet Browser's Page Source
Look for leaked information within the page source code
cURL
curl http://<target ip>
Find number of unique paths
curl https://<URL> > <filename> && cat <filename> | tr " " "\n" | cut -d"'" -f2 | cut -d'"' -f2 | grep "<URL>" | sort -u | wc -l
Login & Execute Payload
code
curl --user offsec:elite 192.168.68.46:242/pwn.phpexample
kali@kali:~$ curl --user offsec:elite 192.168.68.46:242/pwn.phpGobuster
gobuster dir -u http://<target ip> -w <wordlist>
Gobuster flags
dir: Uses directory/file enumeration mode
-w: Path to the wordlist
CeWL (Custom Wordlist Generator)
Cewl is a tool used to crawl a website to generate a custom wordlist
Last updated