gobuster dir -u http://target.com -w /usr/share/seclists/Discovery/Web_Content/directory-list-2.3-medium.txt -t 50 You are hunting for subdomains of example.com .
In Kali Linux, SecLists is packaged neatly so you don’t have to clone a 2GB GitHub repo manually. Contrary to popular belief, SecLists is not always installed by default on minimal Kali images. To get it: kali seclists
cat /usr/share/seclists/Discovery/Web_Content/common.txt /usr/share/seclists/Discovery/Web_Content/big.txt > myCustom.txt Unlike the GitHub clone, the apt package might lag slightly. For bleeding-edge lists: gobuster dir -u http://target
Navigate there and run ls . You will see a folder structure that looks like this: ffuf -u http://site
Don't load a 15GB list into Hydra if you only need SQLi keywords.
ffuf -u http://site.com/page.php?FUZZ=1 -w /usr/share/seclists/Discovery/Web_Content/burp-parameter-names.txt 1. It is huge. The full install is roughly 2-3GB. If you are on a low-resource VM or Raspberry Pi, consider using the seclists-small package (if available) or just symlink specific lists.
Yes, you could sit and manually guess directory names or subdomains. Or, you could unleash —the most comprehensive collection of wordlists available on Kali Linux.