Web Enumeration

CheatSHEET

Manh-Dung Nguyen - OSCP Enumerationstrongcourage.github.io

https://fareedfauzi.gitbook.io/oscp-notes/services-enumeration/http-s/enumeration-checklistfareedfauzi.gitbook.io

Page not found - HackTricksbook.hacktricks.xyz

Use exiftool on pngs and documents that might give you a hint on the owner.

Directory Busting

IIS Applications

wfuzz -c --hc=404 -t 200 -w /usr/share/wordlists/SecLists/Discovery/Web-Content/IIS.fuzz.txt http://10.10.10.103:80/FUZZ