🌄
Shikata Ga Nai
  • Shikata Ga Nai
  • General
  • Gaining Access
    • Nmap
    • Reverse Shell
    • Password Cracking
    • Other Services
      • 21 - FTP
      • Enumerating SMB
    • Web
      • Web Enumeration
      • XSS
      • File Inclusion
      • SQL Injection
  • Linux Foothold
    • Linux Tricks
    • Privesc
  • Windows Foothold
    • Privesc
  • Binary
    • Calling Conventions
    • Debuggers
    • Examining Binaries
    • Shellcoding
    • Bypassing Exploit Mitigation Techniques [Linux]
  • Stego
    • Stego tools
Powered by GitBook
On this page
  • Vectors
  • Tools
  • Nikto
  • Gobuster

Was this helpful?

  1. Gaining Access
  2. Web

Web Enumeration

PreviousWebNextXSS

Last updated 4 years ago

Was this helpful?

Vectors

Firstly interact with the website and ask yourself:

  • What language is the app written in?

  • what server software is the application running on?

  • What does the application do?

  • What is the technology stack?

  • etc.

The browser's dev tools can help [also, the extension can help recognize technologies].

Look for a sitemap like robots.txt and sitemap.xml.

Some sites ship with remote administration web applications, for example /manager/html [Tomcat] and /phpmyadmin [MySQL]. Try to log in with default creds.

Tools

Nikto

A good scanning tool for catching low hanging fruit. Very noisy!

Gobuster

Directory [and DNS] busting. Rumored to be stabler and faster than dirbuster and dirb. Usage example:

gobuster dir -u <URL> -w <wordlist> -c <cookies> -x <file extentions>
Wappalyzer