Skip to content

MyCode83/godirb

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

120 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

godirb

Fast, modern recursive directory and file brute-forcer written in Go.

Built for quick scans where you want a modern dirb-like tool: run it, get useful results, tune the obvious flags, and avoid dragging a full fuzzing framework into a simple job.

License Release Go Stars

πŸ“¦ Installation

Go

go install github.com/MyCode83/godirb@latest

Binary

Download the latest release for your platform from the Releases page and add it to your PATH.


πŸš€ Quick Start

Basic scan

godirb -u https://example.com

Recursive

godirb -u https://example.com -r

Custom wordlist

godirb -u https://example.com -w paths.txt

JSON output

godirb -u https://example.com --json -o results.json

✨ Why godirb?

godirb is designed for the common case: you want to enumerate directories and files quickly, without configuring a large fuzzing framework.

Highlights

  • ⚑ Fast native Go binary
  • πŸ“¦ Single executable
  • πŸ“š Embedded wordlists
  • πŸ”„ Recursive scanning
  • πŸ“‚ Directory and file discovery
  • 🎯 Wildcard detection
  • 🌐 Port fuzzing (http://host:FUZZ)
  • πŸ“„ JSON & CSV output
  • 🧩 Simple CLI

πŸ“Š godirb vs DirSearch

DirSearch is a mature and feature-rich web path scanner.

godirb intentionally focuses on the most common workflow: install, run and get useful results with minimal setup.

Feature godirb DirSearch
Find files and folders βœ… βœ…
Recursive scan βœ… βœ…
Custom wordlists βœ… βœ…
Written in Go βœ… ❌
Single binary βœ… ❌
Embedded default wordlists βœ… ❌
Works without runtime wordlist files βœ… ❌
Port fuzzing (http://host:FUZZ) βœ… ❌

πŸ“¦ Features

Scanning

  • Directory and file brute-forcing
  • Recursive mode (-r, --recursive)
  • Extensions (-x, --ext)
  • Custom wordlists (-w, --wordlist)
  • FUZZ placeholder mode

Embedded Wordlists

  • small
  • common
  • medium (default)
  • big
  • ports
  • payloads
  • xss
  • lfi

Output

  • Standard text
  • Quiet mode
  • JSON
  • CSV
  • File output

Control

  • Threads (-t, --threads)
  • Ignore status codes (-i, --ignore)
  • Default ignored codes: 404,400,405,408
  • Wildcard detection

πŸ’» Examples

Basic scan

godirb -u https://example.com

Recursive

godirb -u https://example.com -r

Custom wordlist

godirb -u https://example.com -w paths.txt

Extensions

godirb -u https://example.com -x php,txt,bak

FUZZ parameter

godirb -u "https://example.com/search?q=FUZZ" -w payloads

Port fuzzing

godirb -u https://example.com:FUZZ

Export JSON

godirb -u https://example.com --json -o results.json

Export CSV

godirb -u https://example.com --csv -o results.csv

πŸ“‹ Example Output

[DIR]  https://example.com/admin       ---> 200 | 1234
[FILE] https://example.com/login.php   ---> 200 | 842
[DIR]  https://example.com/uploads     ---> 403 | 795

πŸ“– Embedded wordlists
Name Purpose
small Tiny scans
common common.txt from SecLists
medium Default
big Larger enumeration
ports Port fuzzing
payloads Generic payloads
xss XSS payloads
lfi LFI payloads

⚠️ Disclaimer

Use godirb only for authorized security testing, labs and CTFs.

You are responsible for obtaining permission before scanning any target.


πŸ“„ License

Licensed under the MIT License. See LICENSE for details.

About

Fast and easy-to-use directory brute-forcer written in Go.

Topics

Resources

License

Code of conduct

Contributing

Security policy

Stars

2 stars

Watchers

0 watching

Forks

Packages

 
 
 

Contributors

Languages