{"id":13454493,"url":"https://github.com/maurosoria/dirsearch","last_synced_at":"2025-05-14T22:00:19.792Z","repository":{"id":37431819,"uuid":"9774482","full_name":"maurosoria/dirsearch","owner":"maurosoria","description":"Web path scanner","archived":false,"fork":false,"pushed_at":"2025-02-20T08:03:55.000Z","size":22451,"stargazers_count":12860,"open_issues_count":39,"forks_count":2359,"subscribers_count":308,"default_branch":"master","last_synced_at":"2025-05-07T21:14:19.810Z","etag":null,"topics":["appsec","brute","bug-bounty","bugbounty","dirsearch","enumeration","fuzzer","fuzzing","hacking","hacking-tool","infosec","penetration-testing","pentest-tool","pentesting","python","red-teaming","redteam","scanner","security","wordlist"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/maurosoria.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":".github/FUNDING.yml","license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":"maurosoria"}},"created_at":"2013-04-30T15:57:40.000Z","updated_at":"2025-05-07T20:55:37.000Z","dependencies_parsed_at":"2023-02-17T07:30:51.983Z","dependency_job_id":"8a7433a3-4b1b-4745-b82b-3fb64b54fd49","html_url":"https://github.com/maurosoria/dirsearch","commit_stats":{"total_commits":1589,"total_committers":101,"mean_commits":"15.732673267326733","dds":0.3348017621145375,"last_synced_commit":"0a18692e2907c896f83b6d45a0ce612acf85eb52"},"previous_names":["maurosoria/dirs3arch"],"tags_count":19,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maurosoria%2Fdirsearch","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maurosoria%2Fdirsearch/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maurosoria%2Fdirsearch/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maurosoria%2Fdirsearch/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/maurosoria","download_url":"https://codeload.github.com/maurosoria/dirsearch/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254235685,"owners_count":22036962,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["appsec","brute","bug-bounty","bugbounty","dirsearch","enumeration","fuzzer","fuzzing","hacking","hacking-tool","infosec","penetration-testing","pentest-tool","pentesting","python","red-teaming","redteam","scanner","security","wordlist"],"created_at":"2024-07-31T08:00:54.665Z","updated_at":"2025-05-14T22:00:19.727Z","avatar_url":"https://github.com/maurosoria.png","language":"Python","funding_links":["https://github.com/sponsors/maurosoria"],"categories":["Tools","Content Discovery","Python","\u003ca id=\"8f92ead9997a4b68d06a9acf9b01ef63\"\u003e\u003c/a\u003e扫描器\u0026\u0026安全扫描\u0026\u0026App扫描\u0026\u0026漏洞扫描","Recon","Web Scraping \u0026 Crawling","Weapons","Python (1887)","扫描器、资产收集、子域名","Web Exploitation","🕸️ Web Scraping \u0026 Crawling","\u003ca id=\"132036452bfacf61471e3ea0b7bf7a55\"\u003e\u003c/a\u003e工具","security",":sun_with_face: Useful Python Libraries \u0026 Scripts","Web","BUG BOUNTY / SECURITY RESEARCH","Uncategorized","Hacking 💀","Tool Tip :white_check_mark:","Web Application Testing"],"sub_categories":["Scanner","Directory Bruteforcers \u0026 Fuzzers","\u003ca id=\"de63a029bda6a7e429af272f291bb769\"\u003e\u003c/a\u003e未分类-Scanner","Content Discovery","Tools","网络服务_其他","Web path discovery and bruteforcing tools","Web Path Discovery / Bruteforcing Tools","Content Discovery \u0026 Fuzzing","Uncategorized","Apps (Terminal)"],"readme":"\u003cimg src=\"static/logo.png#gh-light-mode-only\" alt=\"dirsearch logo (light)\" width=\"675px\"\u003e\n\u003cimg src=\"static/logo-dark.png#gh-dark-mode-only\" alt=\"dirsearch logo (dark)\" width=\"675px\"\u003e\n\ndirsearch - Web path discovery\n=========\n\n![Build](https://img.shields.io/badge/Built%20with-Python-Blue)\n![License](https://img.shields.io/badge/license-GNU_General_Public_License-_red.svg)\n![Stars](https://img.shields.io/github/stars/maurosoria/dirsearch.svg)\n[![Release](https://img.shields.io/github/release/maurosoria/dirsearch.svg)](https://github.com/maurosoria/dirsearch/releases)\n[![Sponsors](https://img.shields.io/github/sponsors/maurosoria)](https://github.com/sponsors/maurosoria)\n[![Discord](https://img.shields.io/discord/992276296669339678.svg?logo=discord)](https://discord.gg/2N22ZdAJRj)\n[![Twitter](https://img.shields.io/twitter/follow/_dirsearch?label=Follow)](https://twitter.com/_dirsearch)\n\n\n\u003e An advanced web path brute-forcer\n\n**dirsearch** is being actively developed by [@maurosoria](https://twitter.com/_maurosoria) and [@shelld3v](https://twitter.com/shells3c_)\n\n*Reach to our [Discord server](https://discord.gg/2N22ZdAJRj) to communicate with the team at best*\n\n\nTable of Contents\n------------\n* [Installation](#installation--usage)\n* [Wordlists](#wordlists-important)\n* [Options](#options)\n* [Configuration](#configuration)\n* [How to use](#how-to-use)\n * [Simple usage](#simple-usage)\n * [Pausing progress](#pausing-progress)\n * [Recursion](#recursion)\n * [Threads](#threads)\n * [Asynchronous](#asynchronous)\n * [Prefixes / Suffixes](#prefixes--suffixes)\n * [Blacklist](#blacklist)\n * [Filters](#filters)\n * [Raw request](#raw-request)\n * [Wordlist formats](#wordlist-formats)\n * [Exclude extensions](#exclude-extensions)\n * [Scan sub-directories](#scan-sub-directories)\n * [Proxies](#proxies)\n * [Reports](#reports)\n * [More example commands](#more-example-commands)\n* [Support Docker](#support-docker)\n * [Install Docker Linux](#install-docker-linux)\n * [Build Image dirsearch](#build-image-dirsearch)\n * [Using dirsearch](#using-dirsearch)\n* [References](#references)\n* [Tips](#tips)\n* [Contribution](#contribution)\n* [License](#license)\n\n\nInstallation \u0026 Usage\n------------\n\n**Requirement: python 3.9 or higher**\n\nChoose one of these installation options:\n\n- Install with **git**: `git clone https://github.com/maurosoria/dirsearch.git --depth 1` (**RECOMMENDED**)\n- Install with ZIP file: [Download here](https://github.com/maurosoria/dirsearch/archive/master.zip)\n- Install with Docker: `docker build -t \"dirsearch:v0.4.3\" .` (more information can be found [here](https://github.com/maurosoria/dirsearch#support-docker))\n- Install with PyPi: `pip3 install dirsearch` or `pip install dirsearch`\n- Install with Kali Linux: `sudo apt-get install dirsearch` (deprecated)\n\n\nWordlists (IMPORTANT)\n---------------\n**Summary:**\n - Wordlist is a text file, each line is a path.\n - About extensions, unlike other tools, dirsearch only replaces the `%EXT%` keyword with extensions from **-e** flag.\n - For wordlists without `%EXT%` (like [SecLists](https://github.com/danielmiessler/SecLists)), **-f | --force-extensions** switch is required to append extensions to every word in wordlist, as well as the `/`.\n - To apply your extensions to wordlist entries that have extensions already, use **-O** | **--overwrite-extensions** (Note: some extensions are excluded from being overwritted such as *.log*, *.json*, *.xml*, ... or media extensions like *.jpg*, *.png*)\n - To use multiple wordlists, you can separate your wordlists with commas. Example: `wordlist1.txt,wordlist2.txt`.\n\n**Examples:**\n\n- *Normal extensions*:\n```\nindex.%EXT%\n```\n\nPassing **asp** and **aspx** as extensions will generate the following dictionary:\n\n```\nindex\nindex.asp\nindex.aspx\n```\n\n- *Force extensions*:\n```\nadmin\n```\n\nPassing **php** and **html** as extensions with **-f**/**--force-extensions** flag will generate the following dictionary:\n\n```\nadmin\nadmin.php\nadmin.html\nadmin/\n```\n\n- *Overwrite extensions*:\n```\nlogin.html\n```\n\nPassing **jsp** and **jspa** as extensions with **-O**/**--overwrite-extensions** flag will generate the following dictionary:\n\n```\nlogin.html\nlogin.jsp\nlogin.jspa\n```\n\n\nOptions\n-------\n\n```\nUsage: dirsearch.py [-u|--url] target [-e|--extensions] extensions [options]\n\nOptions:\n --version show program's version number and exit\n -h, --help show this help message and exit\n\n Mandatory:\n -u URL, --url=URL Target URL(s), can use multiple flags\n -l PATH, --urls-file=PATH\n URL list file\n --stdin Read URL(s) from STDIN\n --cidr=CIDR Target CIDR\n --raw=PATH Load raw HTTP request from file (use '--scheme' flag\n to set the scheme)\n --nmap-report=PATH Load targets from nmap report (Ensure the inclusion of\n the -sV flag during nmap scan for comprehensive\n results)\n -s SESSION_FILE, --session=SESSION_FILE\n Session file\n --config=PATH Path to configuration file (Default:\n 'DIRSEARCH_CONFIG' environment variable, otherwise\n 'config.ini')\n\n Dictionary Settings:\n -w WORDLISTS, --wordlists=WORDLISTS\n Wordlist files or directories contain wordlists\n (separated by commas)\n -e EXTENSIONS, --extensions=EXTENSIONS\n Extension list separated by commas (e.g. php,asp)\n -f, --force-extensions\n Add extensions to the end of every wordlist entry. By\n default dirsearch only replaces the %EXT% keyword with\n extensions\n -O, --overwrite-extensions\n Overwrite other extensions in the wordlist with your\n extensions (selected via `-e`)\n --exclude-extensions=EXTENSIONS\n Exclude extension list separated by commas (e.g.\n asp,jsp)\n --remove-extensions\n Remove extensions in all paths (e.g. admin.php -\u003e\n admin)\n --prefixes=PREFIXES\n Add custom prefixes to all wordlist entries (separated\n by commas)\n --suffixes=SUFFIXES\n Add custom suffixes to all wordlist entries, ignore\n directories (separated by commas)\n -U, --uppercase Uppercase wordlist\n -L, --lowercase Lowercase wordlist\n -C, --capital Capital wordlist\n\n General Settings:\n -t THREADS, --threads=THREADS\n Number of threads\n --async Enable asynchronous mode\n -r, --recursive Brute-force recursively\n --deep-recursive Perform recursive scan on every directory depth (e.g.\n api/users -\u003e api/)\n --force-recursive Do recursive brute-force for every found path, not\n only directories\n -R DEPTH, --max-recursion-depth=DEPTH\n Maximum recursion depth\n --recursion-status=CODES\n Valid status codes to perform recursive scan, support\n ranges (separated by commas)\n --subdirs=SUBDIRS Scan sub-directories of the given URL[s] (separated by\n commas)\n --exclude-subdirs=SUBDIRS\n Exclude the following subdirectories during recursive\n scan (separated by commas)\n -i CODES, --include-status=CODES\n Include status codes, separated by commas, support\n ranges (e.g. 200,300-399)\n -x CODES, --exclude-status=CODES\n Exclude status codes, separated by commas, support\n ranges (e.g. 301,500-599)\n --exclude-sizes=SIZES\n Exclude responses by sizes, separated by commas (e.g.\n 0B,4KB)\n --exclude-text=TEXTS\n Exclude responses by text, can use multiple flags\n --exclude-regex=REGEX\n Exclude responses by regular expression\n --exclude-redirect=STRING\n Exclude responses if this regex (or text) matches\n redirect URL (e.g. '/index.html')\n --exclude-response=PATH\n Exclude responses similar to response of this page,\n path as input (e.g. 404.html)\n --skip-on-status=CODES\n Skip target whenever hit one of these status codes,\n separated by commas, support ranges\n --min-response-size=LENGTH\n Minimum response length\n --max-response-size=LENGTH\n Maximum response length\n --max-time=SECONDS Maximum runtime for the scan\n --exit-on-error Exit whenever an error occurs\n\n Request Settings:\n -m METHOD, --http-method=METHOD\n HTTP method (default: GET)\n -d DATA, --data=DATA\n HTTP request data\n --data-file=PATH File contains HTTP request data\n -H HEADERS, --header=HEADERS\n HTTP request header, can use multiple flags\n --headers-file=PATH\n File contains HTTP request headers\n -F, --follow-redirects\n Follow HTTP redirects\n --random-agent Choose a random User-Agent for each request\n --auth=CREDENTIAL Authentication credential (e.g. user:password or\n bearer token)\n --auth-type=TYPE Authentication type (basic, digest, bearer, ntlm, jwt)\n --cert-file=PATH File contains client-side certificate\n --key-file=PATH File contains client-side certificate private key\n (unencrypted)\n --user-agent=USER_AGENT\n --cookie=COOKIE\n\n Connection Settings:\n --timeout=TIMEOUT Connection timeout\n --delay=DELAY Delay between requests\n -p PROXY, --proxy=PROXY\n Proxy URL (HTTP/SOCKS), can use multiple flags\n --proxies-file=PATH\n File contains proxy servers\n --proxy-auth=CREDENTIAL\n Proxy authentication credential\n --replay-proxy=PROXY\n Proxy to replay with found paths\n --tor Use Tor network as proxy\n --scheme=SCHEME Scheme for raw request or if there is no scheme in the\n URL (Default: auto-detect)\n --max-rate=RATE Max requests per second\n --retries=RETRIES Number of retries for failed requests\n --ip=IP Server IP address\n --interface=NETWORK_INTERFACE\n Network interface to use\n\n Advanced Settings:\n --crawl Crawl for new paths in responses\n\n View Settings:\n --full-url Full URLs in the output (enabled automatically in\n quiet mode)\n --redirects-history\n Show redirects history\n --no-color No colored output\n -q, --quiet-mode Quiet mode\n\n Output Settings:\n -o PATH/URL, --output=PATH/URL\n Output file or MySQL/PostgreSQL URL (Format:\n scheme://[username:password@]host[:port]/database-\n name)\n --format=FORMAT Report format (Available: simple, plain, json, xml,\n md, csv, html, sqlite, mysql, postgresql)\n --log=PATH Log file\n```\n\n\nConfiguration\n---------------\n\nBy default, `config.ini` inside your dirsearch directory is used as the configuration file but you can select another file via `--config` flag or `DIRSEARCH_CONFIG` environment variable.\n\n```ini\n# If you want to edit dirsearch default configurations, you can\n# edit values in this file. Everything after `#` is a comment\n# and won't be applied\n\n[general]\nthreads = 25\nasync = False\nrecursive = False\ndeep-recursive = False\nforce-recursive = False\nrecursion-status = 200-399,401,403\nmax-recursion-depth = 0\nexclude-subdirs = %%ff/,.;/,..;/,;/,./,../,%%2e/,%%2e%%2e/\nrandom-user-agents = False\nmax-time = 0\nexit-on-error = False\n# subdirs = /,api/\n# include-status = 200-299,401\n# exclude-status = 400,500-999\n# exclude-sizes = 0b,123gb\n# exclude-text = \"Not found\"\n# exclude-regex = \"^403$\"\n# exclude-redirect = \"*/error.html\"\n# exclude-response = 404.html\n# skip-on-status = 429,999\n\n[dictionary]\ndefault-extensions = php,aspx,jsp,html,js\nforce-extensions = False\noverwrite-extensions = False\nlowercase = False\nuppercase = False\ncapitalization = False\n# exclude-extensions = old,log\n# prefixes = .,admin\n# suffixes = ~,.bak\n# wordlists = /path/to/wordlist1.txt,/path/to/wordlist2.txt\n\n[request]\nhttp-method = get\nfollow-redirects = False\n# headers-file = /path/to/headers.txt\n# user-agent = MyUserAgent\n# cookie = SESSIONID=123\n\n[connection]\ntimeout = 7.5\ndelay = 0\nmax-rate = 0\nmax-retries = 1\n## By disabling `scheme` variable, dirsearch will automatically identify the URI scheme\n# scheme = http\n# proxy = localhost:8080\n# proxy-file = /path/to/proxies.txt\n# replay-proxy = localhost:8000\n\n[advanced]\ncrawl = False\n\n[view]\nfull-url = False\nquiet-mode = False\ncolor = True\nshow-redirects-history = False\n\n[output]\n## Support: plain, simple, json, xml, md, csv, html, sqlite\nreport-format = plain\nautosave-report = True\nautosave-report-folder = reports/\n# log-file = /path/to/dirsearch.log\n# log-file-size = 50000000\n```\n\n\nHow to use\n---------------\n\n[![Dirsearch demo](https://asciinema.org/a/380112.svg)](https://asciinema.org/a/380112)\n\nSome examples for how to use dirsearch - those are the most common arguments. If you need all, just use the **-h** argument.\n\n### Simple usage\n```\npython3 dirsearch.py -u https://target\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target -w /path/to/wordlist\n```\n\n---\n### Pausing progress\ndirsearch allows you to pause the scanning progress with CTRL+C, from here, you can save the progress (and continue later), skip the current target, or skip the current sub-directory.\n\n\u003cimg src=\"static/pause.png\" alt=\"Pausing dirsearch\" width=\"475px\"\u003e\n\n----\n### Recursion\n- Recursive brute-force is brute-forcing continuously the after of found directories. For example, if dirsearch finds `admin/`, it will brute-force `admin/*` (`*` is where it brute forces). To enable this feature, use **-r** (or **--recursive**) flag\n\n```\npython3 dirsearch.py -e php,html,js -u https://target -r\n```\n- You can set the max recursion depth with **--max-recursion-depth**, and status codes to recurse with **--recursion-status**\n\n```\npython3 dirsearch.py -e php,html,js -u https://target -r --max-recursion-depth 3 --recursion-status 200-399\n```\n- There are 2 more options: **--force-recursive** and **--deep-recursive**\n - **Force recursive**: Brute force recursively all found paths, not just paths end with `/`\n - **Deep recursive**: Recursive brute-force all depths of a path (`a/b/c` =\u003e add `a/`, `a/b/`)\n\n- If there are sub-directories that you do not want to brute-force recursively, use `--exclude-subdirs`\n\n```\npython3 dirsearch.py -e php,html,js -u https://target -r --exclude-subdirs image/,media/,css/\n```\n\n----\n### Threads\nThe thread number (**-t | --threads**) reflects the number of separated brute force processes. And so the bigger the thread number is, the faster dirsearch runs. By default, the number of threads is 25, but you can increase it if you want to speed up the progress.\n\nIn spite of that, the speed still depends a lot on the response time of the server. And as a warning, we advise you to keep the threads number not too big because it can cause DoS (Denial of Service).\n\n```\npython3 dirsearch.py -e php,htm,js,bak,zip,tgz,txt -u https://target -t 20\n```\n\n----\n### Asynchronous\nYou can switch to asynchronous mode by `--async`, let dirsearch use coroutines instead of threads to handle concurrent requests.\n\nIn theory, asynchronous mode offers better performance and lower CPU usage since it doesn't require switching between different thread contexts. Additionally, pressing CTRL+C will immediately pause progress without needing to wait for threads to suspend.\n\n----\n### Prefixes / Suffixes\n- **--prefixes**: Add custom prefixes to all entries\n\n```\npython3 dirsearch.py -e php -u https://target --prefixes .,admin,_\n```\nWordlist:\n\n```\ntools\n```\nGenerated with prefixes:\n\n```\ntools\n.tools\nadmintools\n_tools\n```\n\n- **--suffixes**: Add custom suffixes to all entries\n\n```\npython3 dirsearch.py -e php -u https://target --suffixes ~\n```\nWordlist:\n\n```\nindex.php\ninternal\n```\nGenerated with suffixes:\n\n```\nindex.php\ninternal\nindex.php~\ninternal~\n```\n\n----\n### Blacklist\nInside the `db/` folder, there are several \"blacklist files\". Paths in those files will be filtered from the scan result if they have the same status as mentioned in the filename.\n\nExample: If you add `admin.php` into `db/403_blacklist.txt`, whenever you do a scan that `admin.php` returns 403, it will be filtered from the result.\n\n----\n### Filters\nUse **-i | --include-status** and **-x | --exclude-status** to select allowed and not allowed response status-codes\n\nFor more advanced filters: **--exclude-sizes**, **--exclude-texts**, **--exclude-regexps**, **--exclude-redirects** and **--exclude-response**\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --exclude-sizes 1B,243KB\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --exclude-texts \"403 Forbidden\"\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --exclude-regexps \"^Error$\"\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --exclude-redirects \"https://(.*).okta.com/*\"\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --exclude-response /error.html\n```\n\n----\n### Raw request\ndirsearch allows you to import the raw request from a file. The content would be something looked like this:\n\n```http\nGET /admin HTTP/1.1\nHost: admin.example.com\nCache-Control: max-age=0\nAccept: */*\n```\n\nSince there is no way for dirsearch to know what the URI scheme is, you need to set it using the `--scheme` flag. By default, dirsearch automatically detects the scheme.\n\n----\n### Wordlist formats\nSupported wordlist formats: uppercase, lowercase, capitalization\n\n#### Lowercase:\n\n```\nadmin\nindex.html\n```\n#### Uppercase:\n\n```\nADMIN\nINDEX.HTML\n```\n#### Capital:\n\n```\nAdmin\nIndex.html\n```\n\n----\n### Exclude extensions\nUse **-X | --exclude-extensions** with an extension list will remove all paths in the wordlist that contains the given extensions\n\n`python3 dirsearch.py -u https://target -X jsp`\n\nWordlist:\n\n```\nadmin.php\ntest.jsp\n```\nAfter:\n\n```\nadmin.php\n```\n\n----\n### Scan sub-directories\n- From an URL, you can scan a list of sub-directories with **--subdirs**.\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --subdirs /,admin/,folder/\n```\n\n----\n### Proxies\ndirsearch supports SOCKS and HTTP proxy, with two options: a proxy server or a list of proxy servers.\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --proxy 127.0.0.1:8080\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --proxy socks5://10.10.0.1:8080\n```\n\n```\npython3 dirsearch.py -e php,html,js -u https://target --proxylist proxyservers.txt\n```\n\n----\n### Reports\nSupported report formats: **simple**, **plain**, **json**, **xml**, **md**, **csv**, **html**, **sqlite**, **mysql**, **postgresql**\n\n```\npython3 dirsearch.py -e php -l URLs.txt --format plain -o report.txt\n```\n\n```\npython3 dirsearch.py -e php -u https://target --format html -o target.json\n```\n\n----\n### More example commands\n```\ncat urls.txt | python3 dirsearch.py --stdin\n```\n\n```\npython3 dirsearch.py -u https://target --max-time 360\n```\n\n```\npython3 dirsearch.py -u https://target --auth admin:pass --auth-type basic\n```\n\n```\npython3 dirsearch.py -u https://target --header-list rate-limit-bypasses.txt\n```\n\n**There are more to discover, try yourself!**\n\n\nSupport Docker\n---------------\n### Install Docker Linux\nInstall Docker\n\n```sh\ncurl -fsSL https://get.docker.com | bash\n```\n\n\u003e To use docker you need superuser power\n\n### Build Image dirsearch\nTo create image\n\n```sh\ndocker build -t \"dirsearch:v0.4.3\" .\n```\n\n\u003e **dirsearch** is the name of the image and **v0.4.3** is the version\n\n### Using dirsearch\nFor using\n```sh\ndocker run -it --rm \"dirsearch:v0.4.3\" -u target -e php,html,js,zip\n```\n\n\nReferences\n---------------\n- [Comprehensive Guide on Dirsearch](https://www.hackingarticles.in/comprehensive-guide-on-dirsearch/) by Shubham Sharma\n- [Comprehensive Guide on Dirsearch Part 2](https://www.hackingarticles.in/comprehensive-guide-on-dirsearch-part-2/) by Shubham Sharma\n- [How to Find Hidden Web Directories with Dirsearch](https://www.geeksforgeeks.org/how-to-find-hidden-web-directories-with-dirsearch/) by GeeksforGeeks\n- [GUÍA COMPLETA SOBRE EL USO DE DIRSEARCH](https://esgeeks.com/guia-completa-uso-dirsearch/?feed_id=5703\u0026_unique_id=6076249cc271f) by ESGEEKS\n- [How to use Dirsearch to detect web directories](https://www.ehacking.net/2020/01/how-to-find-hidden-web-directories-using-dirsearch.html) by EHacking\n- [dirsearch how to](https://vk9-sec.com/dirsearch-how-to/) by VK9 Security\n- [Find Hidden Web Directories with Dirsearch](https://null-byte.wonderhowto.com/how-to/find-hidden-web-directories-with-dirsearch-0201615/) by Wonder How To\n- [Brute force directories and files in webservers using dirsearch](https://upadhyayraj.medium.com/brute-force-directories-and-files-in-webservers-using-dirsearch-613e4a7fa8d5) by Raj Upadhyay\n- [Live Bug Bounty Recon Session on Yahoo (Amass, crts.sh, dirsearch) w/ @TheDawgyg](https://www.youtube.com/watch?v=u4dUnJ1U0T4) by Nahamsec\n- [Dirsearch to find Hidden Web Directories](https://medium.com/@irfaanshakeel/dirsearch-to-find-hidden-web-directories-d0357fbe47b0) by Irfan Shakeel\n- [Getting access to 25000 employees details](https://medium.com/@ehsahil/getting-access-to-25k-employees-details-c085d18b73f0) by Sahil Ahamad\n- [Best Tools For Directory Bruteforcing](https://secnhack.in/multiple-ways-to-find-hidden-directory-on-web-server/) by Shubham Goyal\n- [Discover hidden files \u0026 directories on a webserver - dirsearch full tutorial](https://www.youtube.com/watch?v=jVxs5at0gxg) by CYBER BYTES\n\n\nTips\n---------------\n- The server has requests limit? That's bad, but feel free to bypass it, by randomizing proxy with `--proxy-list`\n- Want to find out config files or backups? Try `--suffixes ~` and `--prefixes .`\n- Want to find only folders/directories? Why not combine `--remove-extensions` and `--suffixes /`!\n- The mix of `--cidr`, `-F`, `-q` and will reduce most of noises + false negatives when brute-forcing with a CIDR\n- Scan a list of URLs, but don't want to see a 429 flood? `--skip-on-status 429` will help you to skip a target whenever it returns 429\n- The server contains large files that slow down the scan? You *might* want to use `HEAD` HTTP method instead of `GET`\n- Brute-forcing CIDR is slow? Probably you forgot to reduce request timeout and request retries. Suggest: `--timeout 3 --retries 1`\n\n\nContribution\n---------------\nWe have been receiving a lot of helps from many people around the world to improve this tool. Thanks so much to everyone who have helped us so far!\nSee [CONTRIBUTORS.md](https://github.com/maurosoria/dirsearch/blob/master/CONTRIBUTORS.md) to know who they are.\n\n#### Pull requests and feature requests are welcomed\n\n\nLicense\n---------------\nCopyright (C) Mauro Soria (maurosoria@gmail.com)\n\nLicense: GNU General Public License, version 2\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmaurosoria%2Fdirsearch","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmaurosoria%2Fdirsearch","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmaurosoria%2Fdirsearch/lists"}