Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: Finding non referenced web directories / pages

Re: Finding non referenced web directories / pages

From: Michael Katz <mike_at_procinct.com>
Date: Thu, 14 Mar 2002 12:51:23 -0800

At 3/12/2002 01:41 AM, helmut schmidt wrote:

>Does anyone have opinions on which are the best tools/scripts are
>available to test for the existence of hidden (or non-referenced) web
>directories and web pages.
>
>For example finding a directory http://www.xxx.com/admin
>and hidden web page http://www.xxx.com/admin/admin.asp etc

The whisker tool (v1.4) from Rain Forest Puppy has a fairly extensive list
of directories for which it scans. Download the package from
http://www.wiretrip.net/rfp/p/doc.asp/i2/d21.htm and take a look at the
scan.db file.

Michael Katz
mike_at_procinct.com
Procinct Security

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Mar 15 2002

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]