Skip to content
/ parffuf Public

Fuzz many live hosts with ffuf in different modes

7 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

encodedguy/parffuf

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
README.md
README.md
 
 
parffuf.sh
parffuf.sh
 
 

Repository files navigation

parffuf

Fuzz many live hosts with ffuf in different modes (In Development)

Why to use?

When researchers hunt on BBPs, in the recon phase many hosts with 403,404,401,etc. status codes arises. Most of the times we only hunt on hosts with 200 status codes. But, this way we leave the surface which is Forbidden to see and maybe some files and directories are visible there after scanning with some generic wordlists.

Installation

git clone https://github.com/encodedguy/parffuf

Usage

cd parffuf
bash parffuf.sh <hosts.txt> <wordlist.txt> <rate>

Recommendations

  • <hosts.txt>: should contains urls with newlines like this: https://rashahacks.com
  • <wordlist.txt>: should contain a wordlist with directories which are probable to see, or are technologically mapped.
  • : is in requests per second and depends on the program policy.

Credits

@encodedguy

About

Fuzz many live hosts with ffuf in different modes

Resources

Readme
Activity

Stars

7 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages