Today, we’re scanning for directories in hosts and websites, As a Pentester it is important that we go through every step and collect much information as possible. There so many tools for this scanning such as dirb or dirbuster. But for right now we’re discussing dir_scanner from metasploit.

Let’s get started! First we should load up metasploit.

How To Scan Hidden Directories using (dir_scanner) Metasploit

After that we’ll use a module named:

You need to check for options for this module

Now, we have to set RHOSTS to server IP Which directory we’re scanning

We can settle for the default dictionary integrated in Metasploit, set our goal, and let the scanner run.