Gobuster is a open-source, high-performance directory/file, DNS and virtual host brute-forcing tool written in Go.
Use this tool only on systems you own or have explicit permission to test.
Gobuster is a tool used to brute-force: URIs (directories and files) in web sites, DNS subdomains (with wildcard support), Virtual Host names on target web servers, Open Amazon S3 buckets, Open Google Cloud buckets and TFTP servers.
Gobuster is useful for pentesters, ethical hackers and forensics experts. It also can be used for security tests.
What Can Gobuster Do?
- Web Directory/File Enumeration - Discover hidden directories and files on web servers
- DNS Subdomain Discovery - Find subdomains with wildcard support
- Virtual Host Detection - Identify virtual hosts on target web servers
- Cloud Storage Enumeration - Discover open Amazon S3 and Google Cloud Storage buckets
- TFTP File Discovery - Find files on TFTP servers
- Custom Fuzzing - Flexible fuzzing with customizable parameters
