ffuf
over-golang
ffuf | over-golang | |
---|---|---|
17 | 1 | |
11,417 | 4,260 | |
1.3% | 0.0% | |
5.7 | 0.0 | |
25 days ago | about 1 year ago | |
Go | Go | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ffuf
-
Show HN: Pfuzz, a web fuzzer following the Unix philosophy
It seems to me like "fuzzing" has a different meaning in web application penetration testing. Here, "fuzzer" is a term for tools that just generate different request using wordlists, without adding any mutations. For example, the two popular web fuzzers ffuf [1] and wfuzz [2] also call themselves fuzzers.
I see how reusing a term for a different concept is bothersome, but I feel like "fuzzer" is the term that people learning about bug bounty hunting are familiar with.
[1] https://github.com/ffuf/ffuf
[2] https://wfuzz.readthedocs.io/en/latest/
- Fast web fuzzer written in Go
-
The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research)
FFUF
-
Directory Discovery Tools
I've been using ffuf happily for the past couple of years however I remember seeing a post on reddit/twitter about a new "intelligent" discovery tool.
-
Pentesting Tools I Use Everyday
Learn more about ffuf here: https://github.com/ffuf/ffuf
-
Tips on enumerating unknown APIs in my environment?
Also, I see you mentioned using curl. You can checkout ffuf which is closely related but more geared towards what you're doing.
- Fastest webpath scanner out here?
-
Posodobitev orodja ffuf
git clone https://github.com/ffuf/ffuf ; cd ffuf ; go get ; go build
- ffuf - Fuzz Faster U Fool
-
Brute forcing a website link
So ffuf (https://github.com/ffuf/ffuf) or wfuzz (https://github.com/xmendez/wfuzz) are a better choice to enumerate GET/POST parameters/values.
over-golang
-
Gopher Gold #10 - Wed Sep 09 2020
overnote/over-golang (Go): Golang相关:[进度80%]Go语法、Go并发思想、Go与web开发、Go微服务设施等
What are some alternatives?
gobuster - Directory/File, DNS and VHost busting tool written in Go
bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
feroxbuster - A fast, simple, recursive content discovery tool written in Rust.
learn-go-with-tests - Learn Go with test-driven development
nuclei - Fast and customizable vulnerability scanner based on simple YAML based DSL.
opentelemetry-collector - OpenTelemetry Collector
go-sql-driver/mysql - Go MySQL Driver is a MySQL driver for Go's (golang) database/sql package
GORM - The fantastic ORM library for Golang, aims to be developer friendly
go - The Go programming language
msfs2020-go - connect to microsoft flight simulator 2020 using golang
ksubdomain - 无状态子域名爆破工具
7days-golang - 7 days golang programs from scratch (web framework Gee, distributed cache GeeCache, object relational mapping ORM framework GeeORM, rpc framework GeeRPC etc) 7天用Go动手写/从零实现系列