Add -e flag for Extensions. Replaces %EXT% in the given wordlist
This commit is contained in:
Corben Leo
Joona Hoikkala
parent
950a9e8c8f
commit
d1e87c3ce5
8
main.go
8
main.go
@ -18,6 +18,7 @@ import (
|
|||||||
)
|
)
|
||||||
|
|
||||||
type cliOptions struct {
|
type cliOptions struct {
|
||||||
|
extensions string
|
||||||
delay string
|
delay string
|
||||||
filterStatus string
|
filterStatus string
|
||||||
filterSize string
|
filterSize string
|
||||||
@ -49,6 +50,7 @@ func main() {
|
|||||||
defer cancel()
|
defer cancel()
|
||||||
conf := ffuf.NewConfig(ctx)
|
conf := ffuf.NewConfig(ctx)
|
||||||
opts := cliOptions{}
|
opts := cliOptions{}
|
||||||
|
flag.StringVar(&opts.extensions, "e", "", "extensions to bruteforce separated by a comma. `\"wordlist must contain %EXT%\"`")
|
||||||
flag.Var(&opts.headers, "H", "Header `\"Name: Value\"`, separated by colon. Multiple -H flags are accepted.")
|
flag.Var(&opts.headers, "H", "Header `\"Name: Value\"`, separated by colon. Multiple -H flags are accepted.")
|
||||||
flag.StringVar(&conf.Url, "u", "", "Target URL")
|
flag.StringVar(&conf.Url, "u", "", "Target URL")
|
||||||
flag.StringVar(&conf.Wordlist, "w", "", "Wordlist path")
|
flag.StringVar(&conf.Wordlist, "w", "", "Wordlist path")
|
||||||
@ -134,6 +136,12 @@ func prepareConfig(parseOpts *cliOptions, conf *ffuf.Config) error {
|
|||||||
if len(conf.Wordlist) == 0 {
|
if len(conf.Wordlist) == 0 {
|
||||||
errs.Add(fmt.Errorf("-w flag is required"))
|
errs.Add(fmt.Errorf("-w flag is required"))
|
||||||
}
|
}
|
||||||
|
// prepare extensions
|
||||||
|
if parseOpts.extensions != "" {
|
||||||
|
extensions := strings.Split(parseOpts.extensions, ",")
|
||||||
|
conf.Extensions = extensions
|
||||||
|
}
|
||||||
|
|
||||||
//Prepare headers
|
//Prepare headers
|
||||||
for _, v := range parseOpts.headers {
|
for _, v := range parseOpts.headers {
|
||||||
hs := strings.SplitN(v, ":", 2)
|
hs := strings.SplitN(v, ":", 2)
|
||||||
|
|||||||
@ -18,6 +18,7 @@ type optRange struct {
|
|||||||
type Config struct {
|
type Config struct {
|
||||||
StaticHeaders map[string]string
|
StaticHeaders map[string]string
|
||||||
FuzzHeaders map[string]string
|
FuzzHeaders map[string]string
|
||||||
|
Extensions []string
|
||||||
Method string
|
Method string
|
||||||
Url string
|
Url string
|
||||||
TLSVerify bool
|
TLSVerify bool
|
||||||
@ -57,5 +58,6 @@ func NewConfig(ctx context.Context) Config {
|
|||||||
conf.ProxyURL = http.ProxyFromEnvironment
|
conf.ProxyURL = http.ProxyFromEnvironment
|
||||||
conf.Filters = make([]FilterProvider, 0)
|
conf.Filters = make([]FilterProvider, 0)
|
||||||
conf.Delay = optRange{0, 0, false, false}
|
conf.Delay = optRange{0, 0, false, false}
|
||||||
|
conf.Extensions = make([]string, 0)
|
||||||
return conf
|
return conf
|
||||||
}
|
}
|
||||||
|
|||||||
@ -3,6 +3,7 @@ package input
|
|||||||
import (
|
import (
|
||||||
"bufio"
|
"bufio"
|
||||||
"os"
|
"os"
|
||||||
|
"strings"
|
||||||
|
|
||||||
"github.com/ffuf/ffuf/pkg/ffuf"
|
"github.com/ffuf/ffuf/pkg/ffuf"
|
||||||
)
|
)
|
||||||
@ -71,7 +72,15 @@ func (w *WordlistInput) readFile(path string) error {
|
|||||||
var data [][]byte
|
var data [][]byte
|
||||||
reader := bufio.NewScanner(file)
|
reader := bufio.NewScanner(file)
|
||||||
for reader.Scan() {
|
for reader.Scan() {
|
||||||
data = append(data, []byte(reader.Text()))
|
if strings.Index(reader.Text(), "%EXT%") != -1 {
|
||||||
|
extensions := w.config.Extensions
|
||||||
|
for _, ext := range extensions {
|
||||||
|
contnt := strings.Replace(reader.Text(), "%EXT%", ext, -1)
|
||||||
|
data = append(data, []byte(contnt))
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
data = append(data, []byte(reader.Text()))
|
||||||
|
}
|
||||||
}
|
}
|
||||||
w.data = data
|
w.data = data
|
||||||
return reader.Err()
|
return reader.Err()
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user