Bronson is a HTTP brute force path scanning tool. It uses wordlists and permutations of those lists to discover objects on a target webserver. Support is offered for generation of permutations of filenames, by using the filename and extension lists. All filenames are combined with all extensions to generate a complete list.
Bronson uses requests-futures to very quickly cover a large number of requests in parallel and as a result is quite fast.
+ Python 2.7.x
+ Python module:
git clone https://github.com/nosmo/Bronson && cd bronson
pip install -r requirements.txt
python bronson.py -h
python bronson.py --domain site-to-attack.example.com --config ./config.example.yaml