Exposed directory indices are a common sight on the internet. In certain cases, these are unintentional and may contain sensitive information or indicate exploitable scripts or services. In general, directory listing should be disabled.
For nearly all HTTP servers, creating an
index.html file will disable directory listing
in a specific directory. However, to entirely disable directory listing, the steps will
depend on your specific server. Steps for two common HTTP servers are provided below.
.htaccess file in the directory with the following contents:
or, edit your Apache configuration file (generally found in
Options Indexes FollowSymLinks to
Directory listing is disabled by default in Nginx and is controlled by the
available_sites, make sure no
Install dependencies using the following command:
pip3 install -r requirements.txt
usage: main.py [-h] -u BASE_URL [-d] optional arguments: -h, --help show this help message and exit -u BASE_URL, --base-url BASE_URL the starting URL -d, --only-directories display only directories (exclude files)
python main.py -u https://srikavin.me/a/