Linux command
gobuster 命令
网络
复制后可按需替换文件名、目录或参数。
常用示例
Directory brute-force
gobuster dir -u [https://example.com] -w [wordlist.txt]
DNS subdomain enumeration
gobuster dns -d [example.com] -w [subdomains.txt]
Vhost discovery
gobuster vhost -u [https://example.com] -w [wordlist.txt]
With file extensions
gobuster dir -u [https://example.com] -w [wordlist.txt] -x [php,html,txt]
With custom threads
gobuster dir -u [https://example.com] -w [wordlist.txt] -t [50]
Follow redirects
gobuster dir -u [https://example.com] -w [wordlist.txt] -r
说明
gobuster is a fast directory and DNS brute-forcing tool written in Go. It discovers hidden directories, files, and subdomains through wordlist-based enumeration. The tool is designed for web application security testing, helping identify hidden content that may reveal vulnerabilities or sensitive information. It supports multiple modes including directory enumeration, DNS subdomain brute-forcing, and virtual host discovery.
参数
- dir
- Directory/file brute-forcing mode.
- dns
- DNS subdomain enumeration mode.
- vhost
- Virtual host discovery mode.
- -u _url_
- Target URL.
- -w _file_
- Wordlist file.
- -t _n_
- Number of threads.
- -x _extensions_
- File extensions to search.
- -r
- Follow redirects.
- -k
- Skip TLS certificate verification.
- -o _file_
- Output file.
- -s _codes_
- Status codes to consider valid.
- -b _codes_
- Status codes to blacklist.
FAQ
What is the gobuster command used for?
gobuster is a fast directory and DNS brute-forcing tool written in Go. It discovers hidden directories, files, and subdomains through wordlist-based enumeration. The tool is designed for web application security testing, helping identify hidden content that may reveal vulnerabilities or sensitive information. It supports multiple modes including directory enumeration, DNS subdomain brute-forcing, and virtual host discovery.
How do I run a basic gobuster example?
Run `gobuster dir -u [https://example.com] -w [wordlist.txt]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does dir do in gobuster?
Directory/file brute-forcing mode.