-Display+ |
| |
1 Show redirects |
2 Show cookies received |
| |
3 Show all 200/OK responses |
4 Show URLs which require authentication |
| |
D Debug output |
E Display all HTTP errors |
| |
P Print progress to STDOUT |
S Scrub outupt of IPs and hostnames |
| |
V Verbose output |
-evasion+ |
| |
1 Random URI encoding (non-UTF8) |
2 Directory self-reference (/./) |
| |
3 Premature URL ending |
4 Prepend long random string |
| |
5 Fake parameter |
6 TAB as request spacer |
| |
7 Change the case of the URL |
8 Use Windows directory separator () |
| |
A Use a carriage return (0x0d) as a request spacer |
B Use binary value 0x0b as a request spacer |
| |
-Help |
Help File |
-list-plugins |
List all available plugins, perform no testing |
-mutate+ |
Guess additional file names: |
| |
1 Test all files with all root directories |
2 Guess for password file names |
| |
3 Enumerate user names via Apache (/~user type requests) |
4 Enumerate user names via cgiwrap (/cgi-bin/cgiwrap/~user type requests) |
| |
5 Attempt to brute force sub-domain names, assume that the host name is the parent domain |
6 Attempt to guess directory names from the supplied dictionary file |
-mutate-options |
Provide information for mutates |
-port+ |
Port to use (default 80) |
-Tuning+ |
Scan tuning: |
| |
1 Interesting File / Seen in logs |
2 Misconfiguration / Default File |
| |
3 Information Disclosure |
4 Injection (XSS/Script/HTML) |
| |
5 Remote File Retrieval - Inside Web Root |
6 Denial of Service |
| |
7 Remote File Retrieval - Server Wide |
8 Command Execution / Remote Shell |
| |
9 SQL Injection |
0 File Upload |
| |
a Authentication Bypass |
b Software Identification |
| |
c Remote Source Inclusion |
d WebService |
| |
e Administrative Console |
x Reverse Tuning Options (i.e., include all except specified) |
Created By
Metadata
Comments
No comments yet. Add yours below!
Add a Comment
Related Cheat Sheets