1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
.TH DIRB 1 "27/01/2009" "The Dark Raver"
.\"=====================================================================
.if n .ds MP MetaPost
.if t .ds MP MetaPost
.if n .ds MF Metafont
.if t .ds MF M\s-2ETAFONT\s0
.if t .ds TX \fRT\\h'-0.1667m'\\v'0.20v'E\\v'-0.20v'\\h'-0.125m'X\fP
.if n .ds TX TeX
.ie t .ds OX \fIT\v'+0.25m'E\v'-0.25m'X\fP\" for troff
.el .ds OX TeX\" for nroff
.\" the same but obliqued
.\" BX definition must follow TX so BX can use TX
.if t .ds BX \fRB\s-2IB\s0\fP\*(TX
.if n .ds BX BibTeX
.\" LX definition must follow TX so LX can use TX
.if t .ds LX \fRL\\h'-0.36m'\\v'-0.15v'\s-2A\s0\\h'-0.15m'\\v'0.15v'\fP\*(TX
.if n .ds LX LaTeX
.\"=====================================================================
.SH NAME
dirb \- Web Content Scanner
.SH SYNOPSIS
.B dirb <url_base>
.I <url_base>
.I [<wordlist_file(s)>]
.I [options]
.\"=====================================================================
.SH DESCRIPTION
DIRB IS a Web Content Scanner. It looks for existing (and/or hidden) Web
Objects. It basically works by launching a dictionary basesd
attack against a web server and analizing the response.
.SH OPTIONS
.TP
.B -a <agent_string>
.RB
Specify your custom USER_AGENT.
(Default is: "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)")
.TP
.B -b
.RB
Don't squash or merge sequences of /../ or /./ in the given URL.
.TP
.B -c <cookie_string>
.RB
Set a cookie for the HTTP request.
.TP
.B -E <certificate>
.RB
Use the specified client certificate file.
.TP
.B -f
.RB
Fine tunning of NOT_FOUND (404) detection.
.TP
.B -H <header_string>
.RB
Add a custom header to the HTTP request.
.TP
.B -i
.RB
Use case-insensitive Search.
.TP
.B -l
.RB
Print "Location" header when found.
.TP
.B -N <nf_code>
.RB
Ignore responses with this HTTP code.
.TP
.B -o <output_file>
.RB
Save output to disk.
.TP
.B -p <proxy[:port]>
.RB
Use this proxy. (Default port is 1080)
.TP
.B -P <proxy_username:proxy_password>
.RB
Proxy Authentication.
.TP
.B -r
.RB
Don't Search Recursively.
.TP
.B -R
.RB
Interactive Recursion.
(Ask in which directories you want to scan)
.TP
.B -S
.RB
Silent Mode. Don't show tested words. (For dumb terminals)
.TP
.B -t
.RB
Don't force an ending '/' on URLs.
.TP
.B -u <username:password>
.RB
Username and password to use.
.TP
.B -v
.RB
Show Also Not Existent Pages.
.TP
.B -w
.RB
Don't Stop on WARNING messages.
.TP
.B -x <extensions_file>
.RB
Amplify search with the extensions on this file.
.TP
.B -X <extensions>
.RB
Amplify search with this extensions.
.TP
.B -z <milisecs>
.RB
Amplify search with this extensions.
.\"=====================================================================
.SH "SEE ALSO"
.BR brain (x)
|
