Skip to content

STCARLEONE/dirforce

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

🕵️ DirForce - Advanced Directory Brute Forcer

Python PyQt6 License

A high-performance asynchronous directory brute forcer for web reconnaissance and penetration testing. Discover hidden directories, files, and endpoints with built-in wordlists and real-time results.

Screenshot


✨ Features

Feature Description
Asyncio Concurrent Scan hundreds of URLs simultaneously
📚 Built-in Wordlists Common (50), Small (20), Medium (100+) entries
📁 Custom Wordlists Load your own wordlist from file
🔧 Extension Brute Test multiple extensions (php, html, bak, sql, etc.)
🎨 Status Code Filtering Show only 200, 301, 302, 403, 500 responses
📊 Real-time Results Live table with color-coded status codes
📁 Multi-format Export Save results as JSON, CSV, or TXT
🎨 Dark Hacker Theme Eye-friendly terminal-inspired UI

🚀 Quick Start

Prerequisites

  • Python 3.10 or higher
  • pip package manager

Installation

# Clone the repository
git clone https://github.com/stcarleone/dirforce.git
cd dirforce

# Install dependencies
pip install -r requirements.txt

# Run the application
python src/main.py

📖 Usage

  1. Enter Target URL: https://example.com or http://target.com
  2. Select Wordlist: Common, Small, Medium, or load custom file
  3. Set Extensions: php,html,txt,bak,zip,sql (comma-separated)
  4. Configure Filters: Check which status codes to display
  5. Click START BRUTE: Watch real-time results appear
  6. Export: Save findings as JSON, CSV, or TXT

Wordlist Formats

  • Common: 50 most common directories/files
  • Small: 20 essential entries (fast scan)
  • Medium: 100+ entries including API endpoints, CMS paths
  • Custom: Load any .txt file with one entry per line

Extension Brute

Test multiple file extensions automatically:

  • adminadmin, admin.php, admin.html, admin.txt, admin.bak, admin.zip, admin.sql

⚠️ Legal Disclaimer

This tool is intended for authorized security testing only. Always obtain proper written permission before testing any website or system you do not own. The developer assumes no liability for misuse.


📝 License

MIT License - see LICENSE file for details.


👨‍💻 Author

stcarleone


🙏 Acknowledgments

About

Async directory brute forcer for web reconnaissance. Built-in wordlists, extension brute, status filtering, and real-time dark-themed GUI.

Topics

Resources

License

Contributing

Stars

1 star

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages