Quick Start Guide

This guide will walk you through the basic steps to get shortscan up and running.

Prerequisites

Ensure you have successfully installed shortscan by following the Installation guide.

Step 1: Running a Basic Scan

The most straightforward way to use shortscan is to provide it with a single URL. The tool will handle checking for the vulnerability and enumerating files if the target is susceptible.

# Replace http://example.org/ with your target URL
shortscan http://example.org/

Shortscan will first perform a pre-flight check, then determine vulnerability, and if vulnerable, proceed to enumerate files. The output will look something like this:

🌀 Shortscan v0.9.2 · an IIS short filename enumeration tool by bitquark

════════════════════════════════════════════════════════════════════════════════
URL:         http://example.org/
Running:     Microsoft-IIS/8.5
Vulnerable:  Yes!
════════════════════════════════════════════════════════════════════════════════
WEB~1.CON            WEB.config                   web.config
DEV~1/               DEV/                           dev/
...[output truncated]...
════════════════════════════════════════════════════════════════════════════════

Finished! Requests: 1234; Retries: 5; Sent 67890 bytes; Received 123456 bytes

Step 2: Scanning Multiple URLs from a File

For scanning multiple targets, you can list them in a text file and provide the file to shortscan using an @ prefix.

Create a file named urls.txt:

http://example.org/
http://testsite.com/subfolder/
https://another-target.net/

Run shortscan with the file:
```
shortscan @urls.txt
```

Shortscan will process each URL from the file sequentially.

What's Next?

You've now run your first scans. To learn about all the available options and advanced features, check out the Usage Guide. To understand how shortscan finds files, read the Core Concepts.