Categories
Tech

Brute force URLs with gobuster using an authenticated cookie

If you’ve already authenticated with a website you’re pentesting and you want to brute force other URLs, try something like this:

gobuster -e -u http://<IPADDRESS:PORT> -w <WORDLIST> -c PHPSESSID=<COOKIESTRING>

Leave a Reply

Your email address will not be published. Required fields are marked *