ffuf
Filter suggestions and request help
Hi,For directory scanning,Under the same domain name, if 5 or 10 of the same size appear, then this size will be filtered out. Users can customize 5 or 10 or other values .
For directory testing of a large number of domain names,I think this is an effective automatic filtering method .
Also, how does ffuf support random ua ? I can set a ua,sg: .\ffuf.exe -c -e -D -u http://FUZZDOMAIN/FUZZDIR -w ./11.txt:FUZZDOMAIN,./dir2.txt:FUZZDIR -fc 405,404,402,401,400,500,501,502,503,504,505 -fs 0 -H "User-Agent:Mozilla/5.0 (Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0" But I want to be able to switch ua on every request
For the following situations,the -ac parameter seems to be invalid, and all dirs will be recognized as 301 and 302
@bsysop
I have same issue -ac not working
ffuf -w wordlist.txt -u https://your-domain.com/FUZZ -e .json,.html -ac
output:
rootpasswd.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 163ms]
se [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 166ms]
sresurdf.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 164ms]
sresurdf.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 152ms]
sresurdf [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 176ms]
se.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 176ms]
stingray.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 87ms]
se.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 177ms]
stingray.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 97ms]
su.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 97ms]
su [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 100ms]
supervisor [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 109ms]
test.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 110ms]
system.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 110ms]
system.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 111ms]
system [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 112ms]
sysdiag.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 113ms]
testingpw.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 105ms]
test.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 112ms]
testingpw.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 104ms]
sysdiag [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 115ms]
sysdiag.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 115ms]
su.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 116ms]
user.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 105ms]
user.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 106ms]
testingpw [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 114ms]
user [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 107ms]
test [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 116ms]
User [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 107ms]
supervisor.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 118ms]
supervisor.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 118ms]
uploader.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 109ms]
uploader.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 110ms]
uploader [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 110ms]
User.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 81ms]
user00 [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 109ms]
User.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 125ms]
USER [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 125ms]
user1 [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 107ms]
USER.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 118ms]
USER.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 119ms]
user00.json [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 108ms]
wago [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 100ms]
user00.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 112ms]
user1.html [Status: 200, Size: 5, Words: 1, Lines: 2, Duration: 102ms]
