Comments (2)
Shaddy
commented on May 25, 2024
Hi!
It seems that running as you pointed out does what you expect.
echo test | ffuf -e '.php','.html' -u https://www.example.com/FUZZ -mc all -w -
/'___\ /'___\ /'___\
/\ \__/ /\ \__/ __ __ /\ \__/
\ \ ,__\\ \ ,__\/\ \/\ \ \ \ ,__\
\ \ \_/ \ \ \_/\ \ \_\ \ \ \ \_/
\ \_\ \ \_\ \ \____/ \ \_\
\/_/ \/_/ \/___/ \/_/
v0.11git
________________________________________________
:: Method : GET
:: URL : https://www.example.com/FUZZ
:: Matcher : Response status: all
________________________________________________
test.html [Status: 404, Size: 1270, Words: 338]
test.php [Status: 404, Size: 1270, Words: 338]
test [Status: 404, Size: 1270, Words: 338]
:: Progress: [3/3] :: 0 req/sec :: Duration: [0:00:00] :: Errors: 0 ::
In case it wouldn't, you could have done it using -e '.php','.html','' which will do another extra test request.
So you can use it to also test it as dir, e.g. -e '.php','.html','/'
test [Status: 404, Size: 1270, Words: 338]
test.html [Status: 404, Size: 1270, Words: 338]
test/ [Status: 404, Size: 1270, Words: 338]
test.php [Status: 404, Size: 1270, Words: 338]
Hope it helps!
P.S: What would be interesting tho, is to subtract the original payload from the equation using -E for example (which would test just everything but the unreplaced).
from ffuf.
SecT0uch
commented on May 25, 2024
I didn't manage to make it work. I'll try again later.
Thanks,
from ffuf.
Related Issues (20)
- `-ach` flag gives `Encountered an error while executing autocalibration request` errors HOT 1
- Feature Request: Use wordlist to provide multiple file names for output HOT 7
- it doesn't work well with two parameters [post] HOT 3
- recrusion doesn't add job when using Host header HOT 1
- 0 requests per second HOT 1
- Feature Request: audit logging / complete request-response logging HOT 2
- Latest version is not installed HOT 2
- Missing results HOT 3
- * bufio.Scanner: token too long ffuf
- not showing output HOT 3
- about -rate HOT 1
- Ffuf fails with zero-size responses HOT 6
- Feature request: use files as payloads. HOT 3
- چ
- Can ffuf print POST request with data when occur error?
- Fix -recursion-strategy greedy so it won't do recursive on extensions
- ffuf broken with ÿØÿî HOT 2
- Could not parse raw request: could not read request: EOF HOT 4
- Feature Request: Flag to stop on X no. of errors HOT 2
- Option -sa doesn't work properly (i think, not sure if i really understand it, anyways, would be great if this could be changed / added) HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ffuf.