On 02:59, Tim Brown wrote: > Dirb would be a great choice IMO, it has some fastastic lists /and/ it is > designed for command line scanning. I was going to suggest it, but I didn't > want to out you off if you were still keen to do a Dirbuster NASL.
Thanks for the input. I mainly want to integrate the functionality of web directory/file brute forcing in OpenVAS. I will take the tool which fits best and probably Dirb is easier to integrate in OpenVAS and still has the main functionality. Maybe DirBuster might be later a candidate when the command line is more mature and java is abandoned ;) On my search I came across Wfuzz which seems to be promising too as it has some nice wordlists and even can "fuzz" for other vulnerabilities. Maybe I will give this a try too. Christian _______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
