Working with CrawlBox Tool on Kali Linux OS
Example 1: Simple Crawl
python3 crawlbox.py -u https://w3wiki.org
1. In this example, we will be performing simple crawl or simple directory brute-forcing of directories with default wordlist. We have specified our target using the -u tag (https://w3wiki.org).
2. In the below Screenshot, you can see that our scan has started and CrawlBox is detecting directories along with their response status.
3. In the below Screenshot, You can see we are accessing one of the links. You can check and visit for 200,301 Status codes which can have some interesting information.
Example 2: Using Custom Wordlists
python3 crawlbox.py -u https://w3wiki.org -w /usr/share/wordlists/dirb/common.txt
1. In this example, we will be using a custom wordlist for brute-forcing as CrawlBox allows or has support to custom wordlist. In the below Screenshot we are brute-forcing directories from /usr/share/wordlists/dirb/common.txt file.
2. In the below Screenshot, we have given the crawl query or command.
3. In the below Screenshot, you can see that the results of the scan are displayed along with the status codes and response information.
Example 3: Adding Delay between requests
python3 crawlbox.py -u https://w3wiki.org -d 3
1. In this example, we will be specifying the time delay between two requests. In the below screenshot, you can see that we have used the -d tag along with the 3-sec delay.
Example 4: Printing Tool’s Version Number
python3 crawlbox.py --version
1. In this example, we are printing or displaying the version of the CrawlBox tool. –version tag is used.
CrawlBox – Easy Way to Brute-force Web Directory
Directory brute force is used to find hidden and often forgotten directories on a site to try to compromise. Some various automated tools and scripts retrieve the status of the directory which is brute-forced from custom wordlists. CrawlBox tool is a Python language-based tool, which is the command line in use. CrawlBox tool is an advanced tool that is designed to brute-force directories and files in web servers or web path scanners on the web application or target domain. CrawlBox also allows hackers to use their custom brute force wordlists rather than using the default one. CrawlBox tool has superb performance, speed, high accuracy, and relevant outputs.
Note: Make Sure You have Python Installed on your System, as this is a python-based tool.
Click to check the Installation process: Python Installation Steps on Linux
Contact Us