From 68e7eee1320e5b3b6d7d2fd15d1e6ca082ea0b34 Mon Sep 17 00:00:00 2001 From: Dimitris Pergelidis Date: Tue, 23 Jan 2024 18:37:41 -0500 Subject: [PATCH] ffuf: add page (#12082) Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> Co-authored-by: Juri Dispan Co-authored-by: K.B.Dharun Krishna Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> Co-authored-by: Vitor Henrique <87824454+vitorhcl@users.noreply.github.com> --- pages/common/ffuf.md | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 pages/common/ffuf.md diff --git a/pages/common/ffuf.md b/pages/common/ffuf.md new file mode 100644 index 000000000..c47baa9c1 --- /dev/null +++ b/pages/common/ffuf.md @@ -0,0 +1,25 @@ +# ffuf + +> A fast web fuzzer written in Go. +> The `FUZZ` keyword is used as a placeholder. `ffuf` will try to hit the URL by replacing the word `FUZZ` with every word in the wordlist. +> More information: . + +- Enumerate directories using [c]olored output and a [w]ordlist specifying a target [u]RL: + +`ffuf -c -w {{path/to/wordlist.txt}} -u {{http://target/FUZZ}}` + +- Enumerate subdomains by changing the position of the keyword: + +`ffuf -w {{path/to/subdomains.txt}} -u {{http://FUZZ.target.com}}` + +- Fuzz with specified [t]hreads (default: 40) and pro[x]ying the traffic and save [o]utput to a file: + +`ffuf -o -w {{path/to/wordlist.txt}} -u {{http://target/FUZZ}} -t {{500}} -x {{http://127.0.0.1:8080}}` + +- Fuzz a specific [H]eader ("Name: Value") and [m]atch HTTP status [c]odes: + +`ffuf -w {{path/to/wordlist.txt}} -u {{http://target.com}} -H "{{Host: FUZZ}}" -mc {{200}}` + +- Fuzz with specified HTTP method and payloa[d], while [f]iltering out comma separated status [c]odes: + +`ffuf -w {{path/to/postdata.txt}} -X {{POST}} -d "{{username=admin\&password=FUZZ}}" -u {{http://target/login.php}} -fc {{401,403}}`