dirsearch icon indicating copy to clipboard operation
dirsearch copied to clipboard

Published 20 hours ago verified publisher icon maurosoria

HTML title during enumeration

Open alfonsocaponi opened this issue 3 years ago • 6 comments

It would be very useful collect and report the HTML title during entrypoint enumeration. I don't know if easy to make... What do you think? :)

alfonsocaponi avatar Feb 25 '21 10:02 alfonsocaponi

Hi, this is super easy to make, but the problem is it will make the output looks dirty

shelld3v avatar Feb 25 '21 10:02 shelld3v

True, but if it were optional... :) For example, putting title in square brackets. Just a note, remove "multi spaces" (keep only single spaces) and "carriage return":

200 - 17KB - https://example.com:443/docs/ [Apache Tomcat 8 (8.5.29) - Documentation Index]

In my opinion it would be an added value during bug bounty activities! :)

alfonsocaponi avatar Feb 25 '21 11:02 alfonsocaponi

Browsing an URL is one of the most basic skills in bug bounty hunting! You can't do it? 😉

shelld3v avatar Feb 25 '21 11:02 shelld3v

True, but if it were optional... :)

That fact that we can make tons of optional flags, but it will just flood the dirsearch flags. We only focus on important things, and remember that even you see the title, browsing that endpoint is still a must-do action

shelld3v avatar Feb 25 '21 11:02 shelld3v

Yes, I agree with you. It would just be a way to filter through large numbers :)

alfonsocaponi avatar Feb 25 '21 13:02 alfonsocaponi

Yes, I agree with you. It would just be a way to filter through large numbers :)

Hello!

I am working on a PR, that allows you to create your own signatures. With a signature (YAML format), any response that matches the regex/text in the signature will be notified in the output. Is this a good replacement for your suggestion?

shelld3v avatar Apr 29 '21 10:04 shelld3v