Content discovery: Beyond the basics

Introduction

Attack strategies

Non recursive vs recursive scanning

Content discovery

Size does matter

Single target vs a list of targets

Parameter fuzzing, content discovery or directory brute forcing? HELP!

<https://example.com/FUZZ>
<https://example.com/FUZZ.php>
<https://example.com/index.php?FUZZ=1>
<https://FUZZ.example.com/>

vHost brute forcing

Tools

BURP SUITE PRO: Burp suite content discovery

Wfuzz

$ wfuzz -w wordlist/general/common.txt --hc 404 <http://testphp.vulnweb.com/FUZZ>
$ wfuzz -w wordlist/general/common.txt --hc 404,500 <http://testphp.vulnweb.com/FUZZ>

Others

Full course

No b*llshit Hacking tutorials with extreme value in short bursts

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store