Day 19, Web Reconnaissance Or Information Gathering — Part 4#100DaysofHacking

Get all the writeups from Day 1 to 17, Click Here Or Click Here.

In our previous blogs we learned about google dorking, scope discovery and how should we use target manually as a user, in this blog we’ll learn about some further techniques.

We have covered many techniques of scope discovery in our previous blog, today also in this we’ll cover some more techniques. Let’s start

Spidering the site

Spidering is another way of finding the directories and the paths through web spidering or web crawling.

Web Crawling or Spidering: It is a process used to identify all pages on a site. This process is done with the help of a web spider tool, in this, we’ll use Burp Spider version 1.7.36 or OWASP Zap.

Let’s do with burp spider in the above-given version:-

This is the interface of burp version 1.7.36:-

Now let’s intercept the request of this url:- http://testphp.vulnweb.com

Then do right-click and send to spider.

Then click on the target tab, after that click on a given filter which is shown below.

Then just checkmark on the show only in-scope items.

Then here you’ll see all the directories n all which are present on the webserver of the testphp.vulnweb.com.

In this way, you can get all the directories n all which is present.

Now let’s do with OWASP ZAP.

OWASP ZAP

Owasp zap is the same as burp now let’s spider the website with zap.

To open zap just search for zap in Linux.

Then you’ll get an interface like this:

Now click on tools then click on spider.

Then you’ll see an interface like below:

After that just enter a website on which you want to perform a scan and then click on start scan.

You should also see a site tree appear on the left side of your ZAP window. This shows you the files and directories found on the target server in an organized format.

Here is the result which you’ll get in an organized manner. You can see the result is the same as Burp.

For you, you can do testing on scanme.nmap.org

Today will stop here,

Thank you for your time will meet in the next one with another writeup on different information-gathering techniques.

Length of writeup will be long after 30th of Jan 2021 :)

Happy Learning 📖 and Happy Hacking 💻

🔈 🔈 Infosec Writeups is organizing its first-ever virtual conference and networking event. If you’re into Infosec, this is the coolest place to be, with 16 incredible speakers and 10+ hours of power-packed discussion sessions. Check more details and register here.

IWCon2022 - Infosec WriteUps Virtual Conference