Boring Hack The Box enumerator. Generates many useless and boring requests.

htb-enum.sh

#!/bin/bash

set -eu

echo "Running super enum against $1"

# quick scan TCP
# nmap -v -sC -sV -oA initial_nmap $1

# quick scan UDP
# nmap -v -sU -sC 10.10.10.92


echo '----------------------------------'
echo 'doing some stupid dirbusting now..'
echo '----------------------------------'

i=1
for list in "/root/tools/SecLists/Discovery/Web-Content/quickhits.txt" "/root/tools/SecLists/Discovery/Web-Content/tomcat.txt" "/root/tools/SecLists/Discovery/Web_Content/Top1000-RobotsDisallowed.txt" "/root/tools/SecLists/Discovery/Web_Content/common.txt" \
  "/root/tools/SecLists/Discovery/Web-Content/Common_PHP_Filenames.txt" "/usr/share/wordlists/dirb/big.txt" "/usr/share/dirb/wordlists/vulns/apache.txt" \
  "/usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt"
do
  echo "dirbing $list "
  dirb  "http://$1" "$list" -o "$1-dirb-$i.txt"
  ((i++))
done