Mirrors/ffuf
2
0
Fork 0
mirror of https://github.com/ffuf/ffuf synced 2024-11-13 23:47:06 +00:00
Code Issues Projects Releases Packages Wiki Activity
231 commits 31 branches 27 tags 1.7 MiB
Commit graph

231 commits

This branch
This branch
All branches
Author SHA1 Message Date
Joona Hoikkala
e919a5adc0
Add CHANGELOG.md entry 2023-04-21 17:41:30 +03:00
Joona Hoikkala
ddf4ee8a89
Explicitly allow TLS1.0 in HTTP client 2023-04-21 17:40:39 +03:00
Rémi GASCOU (Podalirius)
627c8710cd
[Fix] Fixed multiline output when using only one fuzz variable (issue #645) (#656) 
* Fixed incorrect len() in pkg/output/stdout.go::PrintResult()

* Fixed incorrect iteration on res.Input in pkg/output/stdout.go::prepareInputsOneLine(), Fixes #645

* Update CONTRIBUTORS.md

* Update pkg/output/stdout.go

---------

Co-authored-by: Joona Hoikkala <5235109+joohoi@users.noreply.github.com>
 2023-04-21 17:22:09 +03:00
Maxime Catrice
b2c1f9471f
Fix HTML output (#640) 2023-02-19 14:41:37 +02:00
Joona Hoikkala
e952deb061
Fix the v2 tagging for go install (#639) 2023-02-06 11:20:28 +02:00
Joona Hoikkala
19e07c026b
Fix required go version (#637) 2023-02-05 12:15:14 +02:00
Joona Hoikkala
77cc45cd98
Prepare for v2.0 release (#635) 2023-02-04 15:06:35 +02:00
Joona Hoikkala
c7d0fb5cf5
Gracefully error in case stdin is used for search result (#634) 2023-02-04 13:36:00 +02:00
Joona Hoikkala
643f6b883f
Scraper functionality (#633) 
* Scraper functionality

* Handle matched only - case for scraper

* Add scraper output to different formats

* Fix the ancient merge reminders

* Load scraper rules from directory

* Scraper fixes
 2023-02-04 13:23:31 +02:00
DoI
39c89344a0
Added additional proxy URL verification (#574) 
* Added additional proxy URL verification

* Update pkg/ffuf/optionsparser.go

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>

---------

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2023-02-03 09:09:29 +02:00
Adham Elmosalamy
bbb97abff9
Typo fix (#581) 2023-02-03 09:08:29 +02:00
Arthur A
3b219f289d
fix: changed usage from version 1.3.0 to version 1.5.0 (#595) 2023-02-02 18:16:17 +02:00
Tom Hudson
633893cea0
Change precedence of quiet and JSON output to favour JSON (#570) 
* Changes precedence of quiet and JSON output to favour JSON

* Adds JSON output precedence change to CHANGELOG; TomNomNom to CONTRIBUTORS

---------

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2023-02-02 17:03:54 +02:00
Joshua Mulliken
02362107e2
Add homebrew install method (#552) 
* Add homebrew install method

* Add required information for PR

* fix: resolve contributor ordering

---------

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2023-02-02 16:27:47 +02:00
DoI
7bff9e70da
Fix time-based matcher (#575) 
* Fix time-based matcher

* add time filter/matcher double quotes in readme

---------

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2023-02-02 16:08:57 +02:00
DoI
ebb4c44072
Sniper template parsing - fixes #579 (#580) 
* Add sniper template error cases to tests

* move injectKeyword to a seperate output slice - Fixes #579
 2023-02-02 16:01:07 +02:00
Joona Hoikkala
9bddff79b9
New functionality to map fired blind payloads back to the initial request (#632) 
* Fix ioutil deprecation and use xdg paths instead (wip)

* Clean up deprecated ioutil references, add config directory structure creation and run entry creation

* Add wordlist position setting and FFUFHASH variable

* Save full wordlist paths and print out a raw request when searched

* Cast from string to 32bit integer, 2billion should be enough for a position

* Use correct format strings for float
 2023-02-02 11:51:11 +02:00
Joona Hoikkala
b7adc5038d
Fix jsonlines output while in silent mode (#630) 2023-01-31 17:10:08 +02:00
Joona Hoikkala
2ce22175da
Enhanced rate limiting (#620) 
* Enhanced rate limiting

* Use time.Ticker correctly
 2023-01-04 11:23:32 +02:00
Joona Hoikkala
1a684a9c88
Fix the ac for good now (#615) 2022-12-07 23:02:53 +02:00
Joona Hoikkala
3328a284d2
Fix linter workflow and autocalibration for lines & words match (#614) 
* Fix autocalibration for lines & words match

* Fix golangci-lint workflow
 2022-12-07 18:26:06 +02:00
Joona Hoikkala
5c489aea78 Prepare for 1.5.0 release (#23) 2022-05-19 09:33:57 +03:00
Joona Hoikkala
1db80d49fc Do autocalibration for full path (#22) 
* Do autocalibration for full path

* Linter fixes
 2022-05-19 09:33:42 +03:00
Joona Hoikkala
21a19a1f3d Choose between 'and' and 'or' matching and filtering (#20) 2022-05-19 09:32:34 +03:00
Joona Hoikkala
9fa0a5d20a
Ac rewrite 
* Full revamp of filtering, and autocalibration settings.

* Fix concurrency issue in calibration

* Fix linting
 2022-05-19 09:31:54 +03:00
Joona Hoikkala
0aa69b527c
Prepare point release v1.4.1 (#538) 2022-04-04 01:22:50 +03:00
Joona Hoikkala
2345bfa86d
Fixes to recursion and wordlist handling for queued jobs (#537) 2022-04-04 01:19:39 +03:00
Joona Hoikkala
f6735d56dc
Prepare for release 1.4.0 (#535) 
* Prepare for release 1.4.0

* Prep changelog
 2022-03-26 11:01:25 +02:00
Joona Hoikkala
4436ff79d4
More mascot stuff (#533) 2022-03-25 18:20:42 +02:00
animesh
40978ba54a
Edit comment wordlist go (#528) 
* Edited a comment

* Added my github to contributors file

* edited contributors.md file to sort my name

Co-authored-by: Animesh Kumar <animesh.kumar@privafy.com>
 2022-03-25 18:20:31 +02:00
Joona Hoikkala
d7697943c3
Change logo and add the artist to contributors.md (#532) 2022-03-23 20:18:54 +02:00
Joona Hoikkala
fcae08491a
New mascot (#531) 2022-03-23 19:51:42 +02:00
h1x
571b3397db
Fix a recursion bug when redirected to the same domain and a port was specified (#377) (#522) 
This fixes the situation where the URL port is specified from the
command line and the "Location" redirection header contains an
absolute URL path.
 2022-03-06 18:14:52 +02:00
Justin Steven
4c1a75498b
Add -json option (#509) 
* Add -json option

Prints newline-delimited JSON output to STDOUT

* sort

* Clear terminal line via STDERR foreach JSON result

For each JSON result being printed, prepend it with a TERMINAL_CLEAR_LINE via
STDERR. This clears the progress line (which is also being emitted via STDERR)
and leaves us with a clean stream of JSON lines in the terminal.
 2022-03-06 16:39:33 +02:00
DoI
9aeae16a08
Add Sniper Mode (#469) 
* Modify SimpleRunner to take a Request parameter, add base and copy functions for Requests

* Add Request structs to run queues

* Implemented sniper mode

* Added request and optionsparser tests for sniper mode

* Removed unneccesary print statements

* Updated readme.md and terminal output

* Enabled command inputs for sniper mode

* correctly initialize validmode in optionsparser

* Remove unnecessary print data in TestScrubTemplates

* Use InputProvider for sniper template characters

* Add a sniper-mode specific queue job execution log
 2022-03-06 16:14:45 +02:00
Maxime Catrice
80a4aa7783
Fix -of all output and add HTTP/2 support (#451) (#462) 
* Fix -of all output (#451)

* Add HTTP/2 support
 2022-01-28 17:49:53 +02:00
Adil Soybalı
64860e41dc
Update README.md (#499) 
* Update CONTRIBUTORS.md

* Update README.md

Installing executables with "go get" in module mode is deprecated.
"go install pkg@version" should be used instead.
For more information, see https://golang.org/doc/go-get-install-deprecation

* Update CONTRIBUTORS.md

* Update README.md

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2022-01-22 22:29:25 +02:00
adamtlangley
e77fba18e7
Link to ffuf.me (#465) 
* Link to ffuf.me

* Update README.md

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>

* Added myself to CONTRIBUTORS.md FILE

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2022-01-22 19:55:11 +02:00
n8x0b7T
f6f1e81678
make instalation instructions a code snippet (#476) 2022-01-22 19:53:36 +02:00
Massimo Prencipe
415ec0fd23
Add some tests (#479) 2022-01-22 19:52:27 +02:00
Joona Hoikkala
2fdbd25655
Fix reading wordlists from cfg (#511) 
* Fix issue with wordlists being defined in the ffufrc file

* Add changelog entry
 2022-01-22 19:50:57 +02:00
Alexandre ZANNI
3cc6557fc4
500 Internal Server Error -> default matched status codes (#510) 
* match 500 status code responses by default

* include 500 into default match codes

* match 500: update help message

* Update CHANGELOG.md
 2022-01-22 18:58:07 +02:00
Joona Hoikkala
b440d6dd49 Add functionality to append instead to replace filters in interactive mode (#13) 2022-01-22 18:54:57 +02:00
Gustavo Costa
3c78f89c83
Include full line colors (#446) 
* Include full line colors

* Update CHANGELOG and CONTRIBUTORS
 2021-05-17 01:35:55 +03:00
DoI
965f282c0b
Response time logging and filtering (#433) 
* Added response time reporting and filtering

* Update to use the http config context

* Added changelog and contributor info

* Round time output in stdout to nearest millisecond

* Change stdout duration rounding to use Milliseconds()

* Go back to Round() for timing output

* Changed stdout to display millisecond durations

Co-authored-by: Joona Hoikkala <joohoi@users.noreply.github.com>
 2021-05-17 00:10:56 +03:00
Joona Hoikkala
b56de007d4
Print results found during interactive mode after exiting it (#445) 2021-05-14 00:13:24 +03:00
Samuel Erb
5ad06815cd
Add TLS SNI Support (#441) 
* add SNI support to ffuf

* remove change to keywordPresent

* Update CONTRIBUTORS.md

* Update CHANGELOG.md
 2021-05-13 23:46:29 +03:00
Joona Hoikkala
ee0705e224
Fix an issue where output file was created regardless of -or (#444) 
* Fix an issue where output file was created regardless of -or

* Add CHANGELOG entry
 2021-05-13 19:07:00 +03:00
Joona Hoikkala
958f738b7d
Prepare for release v1.3.1 (#439) 2021-04-27 23:33:55 +03:00
Joona Hoikkala
33f3ecb65c
Trim the newline at the end of raw request file (#438) 2021-04-27 09:01:15 +03:00