SecurityOnline: gobuster v3.6 releases: Directory/file & DNS busting tool https://securityonline.info/gobuster-directoryfile-dns-busting-tool/ #WebInformationGathering #gobuster

We run an OpenCollective fundraiser for #Gobuster, where all proceeds go to varies charities once we hit a certain financial threshold (usually around USD $500). We've just donated the most recent batch of funds to "Kids Helpline" (https://kids-helpline-tax-appeal-2023.raisely.com) here in Australia, run by Yourtown (https://yourtown.com.au/donate).

For transparency ...
Donation expense is here: https://opencollective.com/gobuster/expenses/142097

Support the kiddos!

Thanks to everyone who donated. You're frickin' awesome.

Does anyone know how I could #fuzzy test #api endpoints of URLs with unknown depth of the API endpoint?

For example I have:
- example.com/api/thing
- example.com/api/internal/thing
- example.com/api/v1/doc/thing

The known constant is the domain and the first /api/ URI. Everything else should puzzle itself together.

I used now #gobuster and the SecLists, but somehow miss something.

I’m making a thing. If you’ve ever wanted to brute force URLs on #iOS, I have an app beta for you.

https://testflight.apple.com/join/9UGqTaIZ

I’m going for ease of use, robust tagging support, and native feel. Lemm know what you think.

#infosec #dirb #gobuster #dirbuster #pentesting

Testing video upload/sharing. This is my in development #iOS HTTP enumerator (think #gobuster). Written in #Swift #SwiftUI using #CoreData. #infosec