Gobuster Cheat Sheet

Directory & File Enumeration (dir mode)

# Basic directory brute force
gobuster dir -u http://target.com -w /usr/share/wordlists/dirb/common.txt

# With file extensions
gobuster dir -u http://target.com -w wordlist.txt -x php,html,txt,js

# With authentication
gobuster dir -u http://target.com -w wordlist.txt -U admin -P password

# With cookies
gobuster dir -u http://target.com -w wordlist.txt -c "session=abc123"

# Custom headers
gobuster dir -u http://target.com -w wordlist.txt -H "Authorization: Bearer token"

# Increase threads (default 10)
gobuster dir -u http://target.com -w wordlist.txt -t 50

# Follow redirects
gobuster dir -u http://target.com -w wordlist.txt -r

# Show only specific status codes
gobuster dir -u http://target.com -w wordlist.txt -s 200,204,301,302,307

# Output to file
gobuster dir -u http://target.com -w wordlist.txt -o results.txt

DNS Subdomain Enumeration (dns mode)

# Basic subdomain enum
gobuster dns -d target.com -w /usr/share/wordlists/subdomains.txt

# Show IP addresses
gobuster dns -d target.com -w wordlist.txt -i

# Custom DNS resolver
gobuster dns -d target.com -w wordlist.txt -r 8.8.8.8

# Wildcard detection bypass
gobuster dns -d target.com -w wordlist.txt --wildcard

Virtual Host Enumeration (vhost mode)

# Basic vhost enum
gobuster vhost -u http://target.com -w wordlist.txt

# Append domain to wordlist entries
gobuster vhost -u http://target.com -w wordlist.txt --append-domain

# With custom host header base
gobuster vhost -u http://10.10.10.10 -w wordlist.txt -H "Host: FUZZ.target.com"

HTTPS / TLS Options

# Skip TLS verification
gobuster dir -u https://target.com -w wordlist.txt -k

# Client certificate
gobuster dir -u https://target.com -w wordlist.txt --client-cert cert.pem --client-key key.pem

Common Wordlists (Kali Linux)

Useful Flags Summary