How to detect website active routes?

Question

I'm building a website using Laravel and I'm just thinking about security.

I would like to know if there is a way for attacker to detect all active web routes for a website ?

For example:

http://example.com/login
http://example.com/products
http://example.com/products/{id}/items
etc...

So, what techniques will attacker use to detect this routes ?

Will he check the website page source and search for links or will he somehow try to detect those links without looking at page source code (brute-force for example).

To be honest, I'm asking because I'm not sure if should put the link to the Content Manager to my homepage or not...

score 2 · Answer 1 · answered Jan 31 '19 at 14:33

It depends on the application. They could start with a sitemap like one you provide Google. Or they could crawl it and extract links like a search engine would.

In your case if {id} is a sequential number, they might do a simple enumeration attack. Here's a high profile case where that lead to sensitive information disclosure because of poor access control mechanisms.

Last, they could just guess. For example, every web server I run gets attempts to login to the wordpress admin panel. Which is funny for me because I don't run any wordpress sites... not so funny for wordpress users who didn't set a good password.

score 1 · Answer 2 · edited Feb 19 '20 at 15:03

1

You can using spidering tools, for example:

edited Feb 19 '20 at 15:03

schroeder

123,438
55
284
319

answered Jan 31 '19 at 14:32

Bryro

113
3

How to detect website active routes?

2 Answers2