foglar/ffuff
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Doc fixes

Browse Source
This commit is contained in:
Joona Hoikkala 2018-11-12 23:24:37 +02:00
parent c304f04308
commit b86ac262f3
No known key found for this signature in database
GPG Key ID: D5AA86BBF9B29A5C
2 changed files with 13 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
README.md
View File

@ -72,8 +72,8 @@ To define the test case for ffuf, use the keyword `FUZZ` anywhere in the URL (`-
``` ```
Usage of ./ffuf: Usage of ./ffuf:
-H value -H "Name: Value"
Header name and value, separated by colon. Multiple -H flags are accepted. Header "Name: Value", separated by colon. Multiple -H flags are accepted.
-X string -X string
HTTP method to use. (default "GET") HTTP method to use. (default "GET")
-c Colorize output. -c Colorize output.
@ -81,16 +81,24 @@ Usage of ./ffuf:
POST data. POST data.
-fc string -fc string
Filter HTTP status codes from response Filter HTTP status codes from response
-fr string
Filter regexp
-fs string -fs string
Filter HTTP response size Filter HTTP response size
-fw string
Filter by amount of words in response
-k Skip TLS identity verification (insecure) -k Skip TLS identity verification (insecure)
-mc string -mc string
Match HTTP status codes from respose (default "200,204,301,302,307,401") Match HTTP status codes from respose (default "200,204,301,302,307,401")
-mr string
Match regexp
-ms string -ms string
Match HTTP response size Match HTTP response size
-mw string
Match amount of words in response
-s Do not print additional information (silent mode) -s Do not print additional information (silent mode)
-t int -t int
Number of concurrent threads. (default 20) Number of concurrent threads. (default 40)
-u string -u string
Target URL Target URL
-w string -w string
@ -106,7 +114,6 @@ eg. `ffuf -u https://example.org/FUZZ -w /path/to/wordlist`
## TODO ## TODO
- Tests! - Tests!
- Filters: word count, regex
- Option to follow redirects - Option to follow redirects
- Optional scope for redirects - Optional scope for redirects
- Client / server architecture to queue jobs and fetch the results later - Client / server architecture to queue jobs and fetch the results later

4
main.go
View File

@ -44,7 +44,7 @@ func main() {
defer cancel() defer cancel()
conf := ffuf.NewConfig(ctx) conf := ffuf.NewConfig(ctx)
opts := cliOptions{} opts := cliOptions{}
flag.Var(&opts.headers, "H", "Header name and value, separated by colon. Multiple -H flags are accepted.") flag.Var(&opts.headers, "H", "Header `\"Name: Value\"`, separated by colon. Multiple -H flags are accepted.")
flag.StringVar(&conf.Url, "u", "", "Target URL") flag.StringVar(&conf.Url, "u", "", "Target URL")
flag.StringVar(&conf.Wordlist, "w", "", "Wordlist path") flag.StringVar(&conf.Wordlist, "w", "", "Wordlist path")
flag.BoolVar(&conf.TLSSkipVerify, "k", false, "Skip TLS identity verification (insecure)") flag.BoolVar(&conf.TLSSkipVerify, "k", false, "Skip TLS identity verification (insecure)")
@ -143,7 +143,7 @@ func prepareConfig(parseOpts *cliOptions, conf *ffuf.Config) error {
} }
if !foundkeyword { if !foundkeyword {
errlist = multierror.Append(errlist, fmt.Errorf("No FUZZ keywords found in headers or URL, nothing to do")) errlist = multierror.Append(errlist, fmt.Errorf("No FUZZ keyword(s) found in headers, URL or POST data, nothing to do"))
} }
return errlist.ErrorOrNil() return errlist.ErrorOrNil()
} }