search

HTTP/HTTPS 80/443/*

hashtag
HTTP

hashtag
Nikto

Scan for web application vulnerability

nikto -h $TARGET_URL

hashtag
Gobuster

Brute force directories and files in websites.

gobuster -w /usr/share/seclists/Discovery/Web_Content/common.txt -u $TARGET_URL

hashtag
HTTPS

hashtag
sslscan

Check for OpenSSL HeartBleed

sslscan $TARGET_URL

hashtag
Web Applications

hashtag
PHP

Important information in phpinfo()

  • DOCUMENT_ROOT

hashtag
Wordpress

PreviousSMTP 25NextSMB 139/443

Last updated