Gobuster Cheatsheet

Dir mode

To find directories and files

Sintaxis:

gobuster dir -u <url> -w <wordlist_file.txt> -x <file_extensions>

Example:

gobuster dir -u http://workers.htb -w /usr/share/dirbuster/wordlists/directory-list-2.3-medium.txt -x php,php3,html

vhost mode

Check if subdomain exists by visiting url and verifying the IP address

Sintaxis:

gobuster vhost -v -w <wordlist.txt> -u <url> -o <output_file.txt>

Example:

gobuster vhost -v -w /home/username/SecLists/Discovery/DNS/subdomains-top1million-5000.txt -u http://workers.htb -o vhosts.txt

To find subdomains in a specific domain

Sintaxis

gobuster dns -d <domain> -w <word_list.txt> -i

Example:

gobuster dns -d workers.htb -w /home/username/SecLists/Discovery/DNS/subdomains-top1million-5000.txt -i