IIS
IIS Recon
Find IIS server information
whatweb <IP addr>Access target server
http <IP addr>Find interesting files and directory
dirb http://<IP addr> Access target webserver using CLI tool browsh
browsh --startup-url http://<IP addr>/Default.aspxNmap Scripts
Get sensitive information
Run nmap http-headers script
Run nmap http-methods script to check all allowed methods
Run webdav scanning namp script on /webdav directory
Last updated
Was this helpful?