Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ffuf (security based tooling) #662

Merged
merged 2 commits into from
Oct 17, 2023
Merged

Add ffuf (security based tooling) #662

merged 2 commits into from
Oct 17, 2023

Conversation

copyleftdev
Copy link

@copyleftdev copyleftdev commented Oct 12, 2023
edited
Loading

added a security tool ffuf feroxbuster, it is commonly used by security researchers, I figured having an varied set of tools for webi would get more users in hope that translates to [Stars]

@copyleftdev copyleftdev changed the title Added the ffuf package Adding a series of security based tooling Oct 12, 2023
@coolaj86
Copy link
Member

coolaj86 commented Oct 16, 2023
edited
Loading

@copyleftdev I rebased these on master, so you'll need to git pull --rebase --force for further edits.

Can you update these examples to use something like pastebin or some companion tool that makes it more clear what they're doing? Or a honey pot site or local honey pot tool?

Also, these are missing ```sh code blocks for the examples.

@coolaj86 coolaj86 changed the title Adding a series of security based tooling Add ffuf and feroxbuster (security based tooling) Oct 16, 2023
@copyleftdev
Copy link
Author

@coolaj86 I updated the ffuf readme

@copyleftdev copyleftdev reopened this Oct 17, 2023
coolaj86
coolaj86 approved these changes Oct 17, 2023
View reviewed changes
Copy link
Member

@coolaj86 coolaj86 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I squashed (git rebase -i main) all the commits and updated the Cheat Sheet after doing some research on ffuf myself.

@coolaj86 coolaj86 merged commit 84722bd into webinstall:main Oct 17, 2023
3 checks passed
@coolaj86 coolaj86 changed the title Add ffuf and feroxbuster (security based tooling) Add ffuf (security based tooling) Oct 17, 2023
@coolaj86
Copy link
Member

coolaj86 commented Oct 17, 2023
edited
Loading

@copyleftdev Will you open a new PR with feroxbuster and model the cheat sheet after my updates to ffuf?

https://webinstall.dev/ffuf

A copy of just the feroxbuster parts of the old PR is at at https://github.com/webinstall/webi-installers/compare/add-feroxbuster-old?expand=1, and it can be previewed at https://beta.webinstall.dev/feroxbuster

We want the Cheat Sheet to be something approachable for newbies that aren't already familiar with similar tools.

Things that were challenging in learning about fuff:

  • it's not clear what a wordlist is, what format it's in, or where to get one
  • it's not clear that FUZZ is a user-selectable substitution variable
  • it's not clear what the results are expected to be

The installers should be pretty much copy/paste, but the Cheat Sheet is where it really takes someone who is familiar with the tool, and make it accessible to those who aren't.

@coolaj86 coolaj86 mentioned this pull request Oct 24, 2023
Closed
28 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coolaj86 coolaj86 coolaj86 approved these changes

Assignees
No one assigned
Labels
hacktoberfest hacktoberfest-accepted
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@copyleftdev @coolaj86