Gobuster/Dirbuster

Question 1

What is Gobuster used for?

Answer 1

Gobuster is used for brute-force discovery of directories, files, and DNS subdomains.

Question 2

Fill in the blank: Gobuster is a tool commonly used for ____ and DNS enumeration.

Answer 2

directory brute-forcing

Question 3

How do you use Gobuster to brute-force directories on a web server?

Answer 3

Use ‘gobuster dir -u -w ‘.

Question 4

What does the ‘-w’ option in Gobuster specify?

Answer 4

The ‘-w’ option specifies the wordlist to be used for brute-forcing.

Question 5

Fill in the blank: The ‘dir’ mode in Gobuster is used for discovering hidden ____ and files on web servers.

Answer 5

directories

Question 6

What is the purpose of the ‘-x’ option in Gobuster?

Answer 6

The ‘-x’ option specifies file extensions to append to each word in the wordlist (e.g., .php, .html).

Question 7

How do you use Gobuster to brute-force DNS subdomains?

Answer 7

Use ‘gobuster dns -d -w ‘.

Question 8

Fill in the blank: Gobuster can also brute-force DNS ____ using the ‘dns’ mode.

Answer 8

subdomains

Question 9

What is the purpose of the ‘-t’ option in Gobuster?

Answer 9

The ‘-t’ option specifies the number of threads to use during the scan.

Question 10

How do you limit Gobuster’s brute-force scan to a specific directory?

Answer 10

Use the ‘-u’ option followed by the full URL of the directory you want to scan.

Question 11

Fill in the blank: Gobuster’s ‘dns’ mode is used for subdomain enumeration, while the ‘dir’ mode is for ____ discovery.

Answer 11

directory

Question 12

How do you increase Gobuster’s scan speed?

Answer 12

You can increase the number of threads using the ‘-t’ option.

Question 13

What is the purpose of the ‘-o’ option in Gobuster?

Answer 13

The ‘-o’ option specifies the file where scan results will be saved.

Question 14

How do you use Gobuster to scan for specific file types?

Answer 14

Use the ‘-x’ option to specify file extensions (e.g., ‘.php’, ‘.txt’).

Question 15

What does the ‘-r’ option do in Gobuster?

Answer 15

The ‘-r’ option forces the scanner to follow redirects.

Question 16

What is Dirbuster used for?

Answer 16

Dirbuster is a GUI-based tool used for brute-forcing directories and files on web servers.

Question 17

Fill in the blank: Dirbuster is commonly used to discover hidden files and directories on ____ servers.

Answer 17

web

Question 18

How do you configure Dirbuster to search for specific file extensions?

Answer 18

You can specify desired file extensions in the file extension field of the Dirbuster interface.

Question 19

What is the purpose of a wordlist in Dirbuster?

Answer 19

The wordlist is used to generate possible directory and file names for brute-forcing.

Question 20

How do you increase the speed of a Dirbuster scan?

Answer 20

You can increase the number of threads in the ‘Number of Threads’ field.

Question 21

Fill in the blank: Both Dirbuster and Gobuster are used for brute-forcing ____ on web servers.

Answer 21

directories

Question 22

How does Dirbuster handle directory depth?

Answer 22

Dirbuster allows you to set the maximum recursion depth for scanning nested directories.

Question 23

What is the main difference between Gobuster and Dirbuster?

Answer 23

Gobuster is a command-line tool, while Dirbuster has a graphical user interface (GUI).

Question 24

Fill in the blank: Dirbuster is part of the ____ suite and commonly used in web application security testing.

Answer 24

OWASP