Kali Linux

BirDuster : A Multi Threaded Python Script Designed To Brute Force Directories

BirDuster is a Python based knockoff of the original DirBuster.

BirDuster is a multi threaded Python application designed to brute force directories and files names on web/application servers. Often is the case now of what looks like a web server in a state of default installation is actually not, and has pages and applications hidden within.

Installation

Use PIP: pip3 install --user BirDuster

Clone source:

git clone https://www.github.com/ytisf/BirDuster
cd BirDuster
pip3 install –user -r requirements.txt
python3 BirDuster.py –help

Usage

BirDuster has the following flags and options (which you can see with the -h flag):

  • -h/--help: Show help and exit.
  • -v,-vv,-vvv/--verbosity: Verbosity level.
  • -p/--port: Port to use while dirbusting. Default 80/443.
  • -P/--pfile: If you want to test several ports just write them to a file with newlines.
  • -t/--threads: Amount of concurrent threads. Default is 15.
  • -o/--output: Output CSV of responses. Default is domain_output.csv.
  • -l/--dlist: Directory list file. Default is dir_list.txt.
  • -w/--writereponse: Will write HTTP/S responses to files. Default is False.
  • -i/--ignorecertificate: Ignore SSL certificate errors. Default is False.
  • -u/--useragent: User-Agent to use. Default is random user-agent.
  • --ssl: Use SSL or not. -i flag will automatically turn on SSL.
  • --timeout: Change default socket timeout. Default is 3 seconds.

usage: dirbus.py [-h] [-v] [-p PORT] [-P PFILE] [-t THREADS] [-o OUTPUT]
[-l DLIST] [-w] [-i] [-u USERAGENT] [–ssl]
[–timeout TIMEOUT]
domain
positional arguments:
domain domain or host to buster

R K

Recent Posts

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

1 week ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

1 week ago

How to Check if a File Exists in Bash – Simply Explained

Why Do We Check Files in Bash? When writing a Bash script, you often work…

1 week ago