gobuster - yokohama/oreshic-record GitHub Wiki

gobuster ディレクトリ列挙(ノーマル)

Message

gobuster dir で Web サーバーのディレクトリ/ファイル列挙を行う。
-u で対象URL、-w でワードリストを指定する。
HTTP ステータスや応答の違いから存在するパスを特定する用途で使用する。

Command

gobuster dir -u http://10.129.63.90 -w $HOME/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-small.txt

Result

===============================================================
Gobuster v3.8
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url:                     http://10.129.63.90
[+] Method:                  GET
[+] Threads:                 10
[+] Wordlist:                $HOME/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes:   404
[+] User Agent:              gobuster/3.8
[+] Timeout:                 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
Progress: 0 / 1 (0.00%)
2025/11/12 05:15:39 error on running gobuster on http://10.129.63.90/: timeout occurred during the request

Tag

{none}

gobuster ディレクトリ列挙(拡張子指定)

Message

-x で特定拡張子のみを対象に列挙する。
例では php を指定し、.php ファイルの存在確認を行っている。

Command

gobuster dir -u http://10.129.63.90 -w $HOME/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-small.txt -x php

Result

===============================================================
Gobuster v3.8
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url:                     http://10.129.63.90
[+] Method:                  GET
[+] Threads:                 10
[+] Wordlist:                $HOME/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes:   404
[+] User Agent:              gobuster/3.8
[+] Extensions:              php
[+] Timeout:                 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
Progress: 0 / 1 (0.00%)
2025/11/12 05:17:01 error on running gobuster on http://10.129.63.90/: timeout occurred during the request

Tag

{none}

gobuster ディレクトリ列挙(不要応答除外)

Message

--exclude-length で特定レスポンスサイズを除外する。
--status-codes-blacklist で特定HTTPステータスを除外する。
共通エラーページを排除してノイズを減らすために使用する。

Command

gobuster dir -u http://10.48.172.237:3128 -w /usr/share/wordlists/seclists/Discovery/Web-Content/DirBuster-2007_directory-list-2.3-small.txt --exclude-length 3594 --status-codes-blacklist 400

Result

===============================================================
Gobuster v3.8
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url:                     http://10.48.172.237:3128
[+] Method:                  GET
[+] Threads:                 10
[+] Wordlist:                /usr/share/wordlists/seclists/Discovery/Web-Content/DirBuster-2007_directory-list-2.3-small.txt
[+] Negative Status codes:   400
[+] Exclude Length:          3594
[+] User Agent:              gobuster/3.8
[+] Timeout:                 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================

Tag

{none}

⚠️ **GitHub.com Fallback** ⚠️