DIRB — Practical Guide

1. INTRODUCTION

Dirb is a classic web content scanner used for discovering hidden directories and files on web servers.

It works by requesting each entry from a wordlist and analyzing responses.

Useful in pentests and CTFs for locating admin panels, backups, APIs, and misconfigurations.

2. BASIC USAGE

Simple scan:

With a custom wordlist:

3. SCANNING HTTPS

Use -S flag for SSL sites:

4. USING PROXY

Send traffic through a proxy (e.g., Burp Suite):

5. EXTENSION SCAN

Scan specific file extensions:

Example:

6. IGNORING CERTIFICATE ERRORS

Ignore invalid SSL certificates:

7. AUTHENTICATION SUPPORT

Basic authentication:

Useful for targeting protected web areas.

8. BRUTE FORCE SUBDIRECTORIES

Recursive mode:

Be cautious — recursion can be slow and noisy.

9. FILTERING RESPONSES

Exclude certain HTTP status codes:

Useful when custom 404 pages create noise.

10. COOKIE INJECTION

Set cookie manually:

Useful for authenticated enumeration.

11. HEADER INJECTION

Add custom header:

Helps bypass WAFs or fingerprinting checks.

12. INDIVIDUAL FILE WORDLISTS

Search for backup-related files:

13. FULL PENETEST WORKFLOW EXAMPLES

Find admin panel:

Search for backup archives:

Scan API host:

Use authenticated cookie for deeper discovery:

Use proxy through Burp Suite: