dirb參數解析

-----------------
DIRB v2.22
By The Dark Raver
-----------------

dirb <url_base> [<wordlist_file(s)>] [options]

========================= NOTES =========================
<url_base> : Base URL to scan. (Use -resume for session resuming)
<wordlist_file(s)> : List of wordfiles. (wordfile1,wordfile2,wordfile3...)

======================== HOTKEYS ========================
'n' -> Go to next directory.
'q' -> Stop scan. (Saving state for resume)
'r' -> Remaining scan stats.

======================== OPTIONS ========================
-a <agent_string> : Specify your custom USER_AGENT.
-b : Use path as is.
-c <cookie_string> : Set a cookie for the HTTP request.
-E <certificate> : path to the client certificate.
-f : Fine tunning of NOT_FOUND (404) detection.
-H <header_string> : Add a custom header to the HTTP request.
-i : Use case-insensitive search.
-l : Print "Location" header when found.
-N <nf_code>: Ignore responses with this HTTP code.
-o <output_file> : Save output to disk.
-p <proxy[:port]> : Use this proxy. (Default port is 1080)
-P <proxy_username:proxy_password> : Proxy Authentication.
-r : Don't search recursively.
-R : Interactive recursion. (Asks for each directory)
-S : Silent Mode. Don't show tested words. (For dumb terminals)
-t : Don't force an ending '/' on URLs.
-u <username:password> : HTTP Authentication.
-v : Show also NOT_FOUND pages.
-w : Don't stop on WARNING messages.
-X <extensions> / -x <exts_file> : Append each word with this extensions.
-z <millisecs> : Add a milliseconds delay to not cause excessive Flood.

======================== EXAMPLES =======================
dirb http://url/directory/ (Simple Test)
dirb http://url/ -X .html (Test files with '.html' extension)
dirb http://url/ /usr/share/dirb/wordlists/vulns/apache.txt (Test with apache.txt wordlist)
dirb https://secure_url/ (Simple Test with SSL)

 

選擇來介紹幾個常用的參數

-a 設置ua

-c 設置cookie帶cookie掃描

-N 忽略某些響應碼

-o 輸出結果

-p 使用代理

-X 在每個測試目錄上附加后綴

-z 設置毫秒延遲

一、正常掃描

dirb 目標 字典路徑

二、設置 ua 和 cookie

dirb 目標 字典路徑 -a "ua"  -c "cookie"

三、使用代理和輸出結果

dirb dirb 目標 字典路徑 -p ip:port -o result.txt

dirb dirb 目標 字典路徑 -o result.txt

在看看result.txt文本

四、設置附加后綴

dirb dirb 目標 字典路徑 -X test(這樣每個被測試的字典都附加了test)

五、設置毫秒延遲

如果目標存在一些安全程序爬掃描太快被屏蔽的話可以設置-z參數單位是毫秒

dirb dirb 目標 字典路徑 -z 1000 (1秒)

現在只能1秒訪問一次了