bruteoptions.py
Inspired by this post to the Dailydave mailing list by Dave Aitel, I thought of publishing this script I had written and used to find out what HTTP Methods a web directory accepts.
This script takes in two arguments, 1) the FQDN of the site you’re accessing, and 2) a text file of directory names. I like to use a mix of spidered directory names and a dictionary file, such as one of those used by OWASP DirBuster.
$ ./bruteoptions.py
./gethttpoptions.py <url> <list of directories>
$ ./bruteoptions.py tssci-security.com dirs
"tssci-security.com","/about/","200 OK","Apache/1.3.39 (Unix)","None"
"tssci-security.com","/upload/","200 OK","Apache/1.3.39 (Unix)","GET, HEAD, OPTIONS, TRACE"
"tssci-security.com","/projects/","200 OK","Apache/1.3.39 (Unix)","None"
You can also download this script directly.
Hi.
I wrote the same script (I was inspared by your script) but ‘translated’ to C. Here’s the link to the source code:
http://research.voodoo-labs.org/code/bruteoptions.c
I’ve added the possibility to append a file type, that it’s useful when a user wants to bf a certain type of script.
Regards, C1c4Tr1Z