Adding auxiliary/scanner/http/dir_listing documentation

[Yashvendra]

This PR adds the documentation for auxiliary/scanner/http/dir_listing

[h00die]

would it be possible to add in some 'how to make this vulnerable' type instructions? nginx and apache would be awesome, but not super pressed about it. See https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/auxiliary/gather/ipcamera_password_disclosure.md#setup while that is different, its awesome to have some instructions for making the target vulnerable to test the module.

[h00die]

I believe you also set verbose to true since it printed the NOT vulnerable part, but i dont see that in the instructions

[Yashvendra]

would it be possible to add in some 'how to make this vulnerable' type instructions? nginx and apache would be awesome, but not super pressed about it. See https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/auxiliary/gather/ipcamera_password_disclosure.md#setup while that is different, its awesome to have some instructions for making the target vulnerable to test the module.

Yes it would be awesome, will surely look into it.

[Yashvendra]

I believe you also set verbose to true since it printed the NOT vulnerable part, but i dont see that in the instructions

Yeah, didn't mention the verbose part. Should I add it or remove the NOT part ?

[h00die]

I would just add the 2 lines showing you marked verbose (set verbose true, verbose => true). that's easier than removing all the non-vuln hosts, plus it shows what to expect in that use case which is a bonus

[Yashvendra]

I would just add the 2 lines showing you marked verbose (set verbose true, verbose => true). that's easier than removing all the non-vuln hosts, plus it shows what to expect in that use case which is a bonus

Surely will do it. And about the 'how to make this vulnerable' part, can I simply create a php file enabling the directory listing and run it on the server then test it or should I use nginx and apache. What do you suggest?

[h00die]

Whatever makes it vulnerable works for me!

[bcoles]

can I simply create a php file enabling the directory listing

Whatever works; however a .htaccess file with Indexes is more traditional.

[Yashvendra]

Done.

[h00die]

I did a slight cleanup, so minor i didn't want to hold up the rest of this by pushing back again.
Typically we sanitize IPs to 1) not give away your network architecture, 2) save space (192.168.1. is 4 characters larger than 1.1.1., and that space adds up over a few hundred or thousand modules). I also summarized your .htaccess file generation down to one line.
Nice docs, thanks for the contribution!!!!!

53e5f88

[h00die]

Release Notes

Documentation has been added for the auxiliary/scanner/http/dir_listing module.

[Yashvendra]

I did a slight cleanup, so minor i didn't want to hold up the rest of this by pushing back again.
Typically we sanitize IPs to 1) not give away your network architecture, 2) save space (192.168.1. is 4 characters larger than 1.1.1., and that space adds up over a few hundred or thousand modules). I also summarized your .htaccess file generation down to one line.
Nice docs, thanks for the contribution!!!!!

53e5f88

Thanks @h00die I'll keep this in mind for the next time.