https://craizy.dev/techniques/directory-busting/ Recent content in Directory Busting on crAIzy.dev https://craizy.dev/img/htb-default.png https://craizy.dev/ Hugo en Tue, 28 Apr 2026 20:10:00 +0300 https://craizy.dev/writeups/ignition/ Tue, 28 Apr 2026 20:10:00 +0300 crAIzymagento-cvedirectory-busting https://craizy.dev/writeups/ignition/ Virtual host discovery finds the Magento admin panel on a non-default hostname; qwerty123 completes the chain — two recon steps, one flag. https://craizy.dev/writeups/crocodile/ Tue, 28 Apr 2026 15:43:00 +0300 crAIzyftp-bruteforcedirectory-busting https://craizy.dev/writeups/crocodile/ Anonymous FTP drops a credentials file; those credentials unlock an HTTP admin panel — two individually boring findings combine into a full chain. https://craizy.dev/writeups/appointment/ Tue, 28 Apr 2026 14:30:00 +0300 crAIzysql-injectiondirectory-busting https://craizy.dev/writeups/appointment/ SQL injection in a login form — `' OR '1'='1` as username turns authentication into a formality and exposes the flag in one request. https://craizy.dev/writeups/three/ Mon, 27 Apr 2026 22:00:00 +0300 crAIzywebshell-rfidirectory-busting https://craizy.dev/writeups/three/ S3 subdomain discovery exposes a LocalStack bucket; a PHP webshell uploaded via the AWS CLI achieves RCE as www-data without any CVE. https://craizy.dev/writeups/preignition/ Mon, 27 Apr 2026 16:27:00 +0300 crAIzydirectory-busting https://craizy.dev/writeups/preignition/ Directory fuzzing surfaces a hidden admin.php that default credentials unlock; demonstrates why wordlist-based discovery precedes credential guessing.