Add files via upload

Break out Dirb into its own phase / gobuster / directory lists mapped
frizb · Jun 18, 2017 · fb0f38f · fb0f38f
1 parent 1b4bbe7
commit fb0f38f
Show file tree

Hide file tree

Showing 2 changed files with 115 additions and 45 deletions.
diff --git a/attackplan.ini b/attackplan.ini
@@ -13,8 +13,8 @@ Order: Nmap Fast TCP,Nmap Fast UDP
 [Scans Background]
 Order: Nmap All TCP UDP Comprehensive
 [Enumeration Plan]
-Order: Information Gathering
-#Order: Information Gathering,Web Content Enumeration,User Enumeration,Password Enumeration,Vulnerablity Analysis
+Order: Information Gathering,Web Content Enumeration,User Enumeration,Password Enumeration,Vulnerablity Analysis,Dirb Web Content Bruteforce
+
 #= Enumeration Phases ============
 # The following sections detail the specific commands that will be run (found in the config.ini) at each enumeration phase
 [Information Gathering]
@@ -32,9 +32,14 @@ vnc: VNC NMap Scan
 telnet: Telnet NMap All
 dns: DNS Nmap All,DNS Recon
 finger: Finger Nmap All
-[Web Content Enumeration]
-http: Nmap Web Scan,HTTP Nikto,HTTP Dirb,HTTP What Web,HTTP Wordpress Scan 1,HTTP Wordpress Scan 2
-https: Nmap Web Scan,HTTP Nikto,HTTPS Dirb,HTTPS What Web,HTTPS Wordpress Scan 1,HTTPS Wordpress Scan 2
+[Web Site Scanning]
+http: Nmap Web Scan,HTTP Nikto,HTTP What Web,HTTP Wordpress Scan 1,HTTP Wordpress Scan 2
+https: Nmap Web Scan,HTTP Nikto,HTTPS What Web,HTTPS Wordpress Scan 1,HTTPS Wordpress Scan 2
+[Dirb Web Content Bruteforce]
+http: HTTP Dirb
+https: HTTPS Dirb
+[GoBuster Web Content Bruteforce]
+
 [User Enumeration]
 smtp: SMTP Nmap Enum Users,SMTP Emum Users Namelist,SMTP Emum Users Unix Users
 snmp: SNMP SNMP-Check

diff --git a/config.ini b/config.ini
@@ -191,62 +191,127 @@ Command: nmap -sU -sS --script=smb-enum-users -p U:137,T:139 <target> -oN <outpu
 [MySQL Nmap Audit]
 Command: nmap -p <port> --script mysql-audit --script-args "mysql-audit.username='<username>',mysql-audit.password='<password>',mysql-audit.filename='nselib/data/mysql-cis.audit'" <target> >> <output>.txt
 
-#= Directory Lists ==============================
-# Directory enumeration lists have been divided into to categories:
-# Short Lists - Under 1000 lines
-# Long Lists - Over 1000 lines
-[Directory Lists Short]
+#= Username, Password and Directory Lists ==============================
+[Directory Lists]
+# 15 Lines
+best15: /usr/share/wordlists/dirb/other/best15.txt
+# 49 lines
+mutations_common: /usr/share/wordlists/dirb/mutations_common.txt
+# 110 lines
+best110: /usr/share/wordlists/dirb/other/best110.txt
+# 161 lines
+catala: /usr/share/wordlists/dirb/catala.txt
+# 197 lines
+euskera: /usr/share/wordlists/dirb/euskera.txt
+# 29 lines
+extensions_common: /usr/share/wordlists/dirb/extensions_common.txt
+# 10 lines
+indexes: /usr/share/wordlists/dirb/indexes.txt
+# 959 lines
+small: /usr/share/wordlists/dirb/small.txt
+# 1049 lines
+best1050: /usr/share/wordlists/dirb/other/best1050.txt
+# 449 lines
+spanish: /usr/share/wordlists/dirb/spanish.txt
+# 4614 lines
+common: /usr/share/wordlists/dirb/common.txt
+# 20469 lines
+big: /usr/share/wordlists/dirb/big.txt
+# 8607 lines
+names: /usr/share/wordlists/dirb/other/names.txt
+# 30 Lines
+apache: /usr/share/wordlists/dirb/vulns/apache.txt
+# 17 Lines
+axis: /usr/share/wordlists/dirb/vulns/axis.txt
+# 3494 Lines
+cgis: /usr/share/wordlists/dirb/vulns/cgis.txt
+# 21 Lines
+coldfusion: /usr/share/wordlists/dirb/vulns/coldfusion.txt
+# 291 Lines
+domino: /usr/share/wordlists/dirb/vulns/domino.txt
+# 2711 Lines fatwire_
+pagenames: /usr/share/wordlists/dirb/vulns/pagenames.txt
+# 101 Lines
+fatwire: /usr/share/wordlists/dirb/vulns/fatwire.txt
+# 43 Lines
+frontpage: /usr/share/wordlists/dirb/vulns/frontpage.txt
+# 238 Lines
+hpsmh: /usr/share/wordlists/dirb/vulns/hpsmh.txt
+# 579 Lines
+hyperion: /usr/share/wordlists/dirb/vulns/hyperion.txt
+# 59 Lines
+iis: /usr/share/wordlists/dirb/vulns/iis.txt
+# 36 Lines
+iplanet: /usr/share/wordlists/dirb/vulns/iplanet.txt
+# 19 Lines
+jboss: /usr/share/wordlists/dirb/vulns/jboss.txt
+# 129 Lines
+jersey: /usr/share/wordlists/dirb/vulns/jersey.txt
+# 13 Lines
+jrun: /usr/share/wordlists/dirb/vulns/jrun.txt
+# 60 Lines
+netware: /usr/share/wordlists/dirb/vulns/netware.txt
+# 1075 Lines
+oracle: /usr/share/wordlists/dirb/vulns/oracle.txt
+# 121 Lines
+ror: /usr/share/wordlists/dirb/vulns/ror.txt
+# 1111 Lines
+sap: /usr/share/wordlists/dirb/vulns/sap.txt
+# 1708 Lines
+sharepoint: /usr/share/wordlists/dirb/vulns/sharepoint.txt
+# 52 Lines
+sunas: /usr/share/wordlists/dirb/vulns/sunas.txt
+# 34 Lines
+tests: /usr/share/wordlists/dirb/vulns/tests.txt
+# 87 Lines
+tomcat: /usr/share/wordlists/dirb/vulns/tomcat.txt
+# 74 Lines
+vignette: /usr/share/wordlists/dirb/vulns/vignette.txt
+# 361 Lines
+weblogic: /usr/share/wordlists/dirb/vulns/weblogic.txt
+# 560 Lines
+websphere: /usr/share/wordlists/dirb/vulns/websphere.txt
 
-
-[Directory Lists Long]
-
-#= Username and Password Lists ==============================
-# Username and password lists have been divided into to categories:
-# Short Lists - Under 1000 lines
-# Long Lists - Over 1000 lines
-# The intent is to break brute forcing and user enumeration into a quick phase and a long phase
-[User Lists Short]
-#112 Lines
-unix-users: /usr/share/wordlists/metasploit/unix_users.txt
+[User Lists]
+#4 Lines
+postgres-users: /usr/share/wordlists/metasploit/postgres_default_user.txt
+#6 Lines
+tomcat-users: /usr/share/wordlists/metasploit/tomcat_mgr_default_users.txt
 #13 Lines
 http-users: /usr/share/wordlists/metasploit/http_default_users.txt
 #15 Lines
 mirai-users: /usr/share/wordlists/metasploit/mirai_user.txt
-#6 Lines
-tomcat-users: /usr/share/wordlists/metasploit/tomcat_mgr_default_users.txt
+#112 Lines
+unix-users: /usr/share/wordlists/metasploit/unix_users.txt
+#920 Lines
+service-default-users: /usr/share/wordlists/metasploit/default_users_for_services_unhash.txt
+#1909 Lines
+namelist: /usr/share/wordlists/metasploit/namelist.txt
+#8607 Lines
+dirb-users: /usr/share/wordlists/dirb/others/names.txt
+[Password Lists]
 #4 Lines
-postgres-users: /usr/share/wordlists/metasploit/postgres_default_user.txt
-[Password Lists Short]
+postgres-pass: /usr/share/wordlists/metasploit/postgres_default_pass.txt
+#6 lines
+tomcat-pass: /usr/share/wordlists/metasploit/tomcat_mgr_default_pass.txt
+#20 lines
+keyboard-patterns: usr/share/wordlists/metasploit/keyboard-patterns.txt
+#51 lines
+wfuzz-common: /usr/share/wordlists/wfuzz/others/common_pass.txt
+#100 lines
+adobe-top-100: /usr/share/wordlists/metasploit/adobe_top100_pass.txt
 #110 Lines
 dirb-passwords-top-110: /usr/share/wordlists/dirb/others/best110.txt
 #182 Lines
 fastrack: /usr/share/wordlists/fasttrack.txt
 #477 lines
 fern-wifi: /usr/share/wordlists/fern-wifi/common.txt
-#51 lines
-wfuzz-common: /usr/share/wordlists/wfuzz/others/common_pass.txt
-#100 lines
-adobe-top-100: /usr/share/wordlists/metasploit/adobe_top100_pass.txt
-#20 lines
-keyboard-patterns: usr/share/wordlists/metasploit/keyboard-patterns.txt
-#6 lines
-tomcat-pass: /usr/share/wordlists/metasploit/tomcat_mgr_default_pass.txt
-#4 Lines
-postgres-pass: /usr/share/wordlists/metasploit/postgres_default_pass.txt
-[User Lists Long]
-#1909 Lines
-namelist: /usr/share/wordlists/metasploit/namelist.txt
-#920 Lines
-service-default-users: /usr/share/wordlists/metasploit/default_users_for_services_unhash.txt
-#8607 Lines
-dirb-users: /usr/share/wordlists/dirb/others/names.txt
-[Password Lists Long]
 #1000 Lines
 ipmi-passwords: /usr/share/wordlists/metasploit/ipmi_passwords.txt
-#1049 Lines
-dirb-passwords-top-1050: /usr/share/wordlists/dirb/others/best1050.txt
 #1008 Lines
 unix-passwords: /usr/share/wordlists/metasploit/unix_passwords.txt
+#1049 Lines
+dirb-passwords-top-1050: /usr/share/wordlists/dirb/others/best1050.txt
 #1244 Lines
 service-default-passwords: /usr/share/wordlists/metasploit/default_pass_for_services_unhash.txt
 #88396 Lines