lokori/htb-enum.sh

## htb-enum.sh
#!/bin/bash

set -eu

echo "Running super enum against $1"

# quick scan TCP
# nmap -v -sC -sV -oA initial_nmap $1

# quick scan UDP
# nmap -v -sU -sC 10.10.10.92


echo '----------------------------------'
echo 'doing some stupid dirbusting now..'
echo '----------------------------------'

i=1
for list in "/root/tools/SecLists/Discovery/Web-Content/quickhits.txt" "/root/tools/SecLists/Discovery/Web-Content/tomcat.txt" "/root/tools/SecLists/Discovery/Web_Content/Top1000-RobotsDisallowed.txt" "/root/tools/SecLists/Discovery/Web_Content/common.txt" \
  "/root/tools/SecLists/Discovery/Web-Content/Common_PHP_Filenames.txt" "/usr/share/wordlists/dirb/big.txt" "/usr/share/dirb/wordlists/vulns/apache.txt" \
  "/usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt"
do
  echo "dirbing $list "
  dirb  "http://$1" "$list" -o "$1-dirb-$i.txt"
  ((i++))
done
	#!/bin/bash

	set -eu

	echo "Running super enum against $1"

	# quick scan TCP
	# nmap -v -sC -sV -oA initial_nmap $1

	# quick scan UDP
	# nmap -v -sU -sC 10.10.10.92


	echo '----------------------------------'
	echo 'doing some stupid dirbusting now..'
	echo '----------------------------------'

	i=1
	for list in "/root/tools/SecLists/Discovery/Web-Content/quickhits.txt" "/root/tools/SecLists/Discovery/Web-Content/tomcat.txt" "/root/tools/SecLists/Discovery/Web_Content/Top1000-RobotsDisallowed.txt" "/root/tools/SecLists/Discovery/Web_Content/common.txt" \
	"/root/tools/SecLists/Discovery/Web-Content/Common_PHP_Filenames.txt" "/usr/share/wordlists/dirb/big.txt" "/usr/share/dirb/wordlists/vulns/apache.txt" \
	"/usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt"
	do
	echo "dirbing $list "
	dirb "http://$1" "$list" -o "$1-dirb-$i.txt"
	((i++))
	done