πWeb Application Checklist
Fuzz first with feroxbuster
robots.txt
,.svn
,.DS_STORE
Try different request type(POST & GET) in burp
Try to analyse website with html2markdown:
Use
cewl
for custom wordlists and--lowercase
for lowercase letters.If apache try shellshock (
cgi-bin
) might be in windows too
Git
To find git repo use linpeas or winpeas and to check use ls -la
or ls -fo
to look for .git file in the repo.
If git repo found as a directory:
To check the commit log
Then check the commit diff:
Use git-extractor
Common Attacks
Check Abusing APIs
Try Custom Wordlist on the website if login required
Wordpress
First check plugins
To enumerate wordpress plugins
Run normally too otherwise might miss plugins
Normally:
Directory Busting
For overall content search: Ferozbuster with βthorough and smart Dirsearch - brings in different stuff. Check robots.txt and sitemap.xml Also try txt and pdf files
-f
can cause a ton of false positives-n
stops recursive directory lookups-b
searches for backups; can produce false positives
Gobuster
Curl
-L
- to follow redirects -d
- To add json data -i
- To
Last updated