Path to this page:
./
security/dirb,
Web Content Scanner
Branch: CURRENT,
Version: 2.20nb6,
Package name: dirb-2.20nb6,
Maintainer: pkgsrc-usersDIRB is a Web Content Scanner. It looks for existing (and/or hidden)
Web Objects. It basically works by launching a dictionary based
attack against a web server and analizing the response.
DIRB comes with a set of preconfigured attack wordlists for easy usage
but you can use your custom wordlists. Also DIRB sometimes can be
used as a classic CGI scanner, but remember is a content scanner not a
vulnerability scanner.
DIRB main purpose is to help in professional web application auditing.
Specially in security related testing. It covers some holes not
covered by classic web vulnerability scanners. DIRB looks for
specific web objects that other generic CGI scanners can't look for.
It doesn't search vulnerabilities nor does it look for web contents
that can be vulnerables.
Required to run:[
www/curl]
Required to build:[
pkgtools/cwrappers]
Master sites:
Filesize: 1988.727 KB
Version history: (Expand)
- (2024-11-01) Updated to version: dirb-2.20nb6
- (2024-11-01) Updated to version: dirb-2.20nb5
- (2024-05-29) Updated to version: dirb-2.20nb4
- (2024-05-16) Updated to version: dirb-2.20nb3
- (2023-11-08) Updated to version: dirb-2.20nb2
- (2023-10-25) Updated to version: dirb-2.20nb1
CVS history: (Expand)
2023-11-08 14:21:43 by Thomas Klausner | Files touched by this commit (2377) |
Log message:
*: recursive bump for icu 74.1
|
2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298) |
Log message:
*: bump for openssl 3
|
2023-08-30 20:21:57 by Hubert Feyrer | Files touched by this commit (4) | |
Log message:
dirb: Update to 2.20 [hubertf 2023-08-29]
Upstream Changes:
2.2.0 (23/04/2013)
-----
- FEATURE: added function compare_str() that returns the position of the first \
different character.
- BUG: fixed the use of finetunning for pages of type 30x in launch_attack()
- FEATURE: improved location_clean() function
- FEATURE: added wordlist hpsmh (hp system management homepage)
- BUG: fixed incorrect use of url_base in launch_attack()
- FEATURE: now in case of fixable error it goes to next directory instead of exiting
- BUG: corrected erroneous use of get_necs() in resume.c
- FEATURE: added wordlist axis and ror (ruby on rails), extended oas and tomcat
2.1.0 (25/05/2011)
-----
- FEATURE: tested URLs information adjusted to terminal width
- BUG: changed printf() that displayed and cleared URL in launch_attack() to \
avoid undue line breaks
- FEATURE: changed output format (all in 1 line)
- FEATURE: added wordlists: wps (websphere portal server), sap (sap j2ee), \
domino (update)
2.0.4 (06/04/2009)
-----
- BUG: -R option fails, fix by Hubert Seiwert
- FEATURE: don't force the / final if there are parameters in the url
- BUG: detection of recurring 401, 403 and 500 codes failed
2.0.3 (27/01/2009)
-----
- BUG: 301/302 detection with -f failed sometimes with recursion.
- FEATURE: the -N option now instead of setting the NEC, makes us ignore \
responses with that code.
2.0.2 (21/10/2008)
-----
- BUG: dump() function could be invoked before all the variables to be saved \
were defined.
2.0.1 (30/08/2007)
-----
- FEAUTRE: updated wordlist cgis.txt
- BUG: CURLOPT_MUTE option removed after deprecated in libcurl
- FEATURE: wordlist common.txt extended
2.0.0 (11/04/2007)
-----
- FEATURE: location_cmp() checks that what is passed to it is a valid url.
- BUG: fixed a bug that led to detect some 302 messages as directories.
1.99.0 (05/07/2006)
------
- FEATURE: directory listing detection in tomcat
- BUG: fixed off-by-one in uri_decode()
- FEATURE: Added Sharepoint wordlist
- BUG: Fixed a lot of bugs produced by the changes.
- FEATURE: NEC by directory.
- FEATURE: NEC by extension.
1.10.0 (25/04/2006)
------
- FEATURE: Added speedcontrol patch (option -z) of Sha0.
Package Changes:
- Install wordlists to make dirb even more useful.
|
2023-04-19 10:12:01 by Adam Ciarcinski | Files touched by this commit (2359) | |
Log message:
revbump after textproc/icu update
|
2022-10-26 12:32:08 by Thomas Klausner | Files touched by this commit (687) |
Log message:
*: bump PKGREVISION for libunistring shlib major bump
|
2021-12-08 17:07:18 by Adam Ciarcinski | Files touched by this commit (3063) |
Log message:
revbump for icu and libffi
|
2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605) |
Log message:
security: Replace RMD160 checksums with BLAKE2s checksums
All checksums have been double-checked against existing RMD160 and
SHA512 hashes
Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
|
2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606) |
Log message:
security: Remove SHA1 hashes for distfiles
|