███████╗███████╗██╗ ██╗███████╗ ██╗ █████╗ ██╗ ██╗███╗ ██╗ ██████╗██╗ ██╗███████╗██████╗
██╔════╝██╔════╝██║ ██║██╔════╝ ██║ ██╔══██╗██║ ██║████╗ ██║██╔════╝██║ ██║██╔════╝██╔══██╗
█████╗ █████╗ ██║ ██║█████╗ ██║ ███████║██║ ██║██╔██╗ ██║██║ ███████║█████╗ ██████╔╝
██╔══╝ ██╔══╝ ██║ ██║██╔══╝ ██║ ██╔══██║██║ ██║██║╚██╗██║██║ ██╔══██║██╔══╝ ██╔══██╗
██║ ██║ ╚██████╔╝██║ ███████╗██║ ██║╚██████╔╝██║ ╚████║╚██████╗██║ ██║███████╗██║ ██║
╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚══════╝╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝ ╚═════╝╚═╝ ╚═╝╚══════╝╚═╝ ╚═╝
By Ali@s (@JDouliez)
This tool is a simple ffuf wrapper which lets you select dynamically which wordlist and which extentions you want to fuzz with.
You can set up and use predefined wordlists, local wordlists you've just downloaded, or use the automated Assetnotes wordlist for a specific theme.
Just install the python3 requirements...
$> pip3 install -r requirements.txt
... and make sure you have to right dependencies
# https://github.com/junegunn/fzf
$> sudo apt install fzf
# https://github.com/ffuf/ffuf
$> go install github.com/ffuf/ffuf@lates
# Add an alias for the fun
$> alias ffufscan="$(pwd)/ffuf-launcher.py"
$> python ffuf-launcher.py http://google.fr/FUZZ -h
usage: Ffuf Launcher [-h] URL [ARGS]
This tool lets you dynamically choose your wordlist and your extension list to fuzz. Because each website is different.
positional arguments:
URL The url to fuzz.
ARGS Any additional ffuf args. (Optional)
optional arguments:
-h, --help show this help message and exit
$> python ffuf-launcher.py http://example.com/FUZZ -fc 404,502 -fs 1337
[?] Which wordlist do you want to fuzz with?: ------------------------------------
> Bo0oM-fuzz.txt
BugBountyWordlist (custom)
Custom/Local list
Specific (automated): txt (172.7kb)
Specific (automated): html / htm (2.7mb)
Specific (automated): xml (181.9kb)
Specific (automated): php (1.3mb)
Specific (automated): js (52.0mb)
Specific (automated): jsp / jspa / do / action (212.9kb)
Specific (automated): aspx / asp / cfm / svc / ashx / asmx (837.0kb)
Specific (automated): subdomains (33.0mb)
Specific (automated): apiroutes (8.5mb)
Specific (automated): directories / 1m (19.0mb)
Specific (automated): cgi / pl (37.4kb)
Specific (automated): parameters / top / 1m (3.4mb)
Specific (manual): pl.txt (4.4mb)
Specific (manual): 2m-subdomains.txt (28.0mb)
[?] What extensions do you want to fuzz?:
[X] .php
[ ] .log
[ ] .zip
[X] .sql
[ ] .txt
[ ] .pdf
> [X] .xml
[ ] .conf
[ ] .cfg
[ ] .json
[ ] .asp
[ ] .aspx
[ ] .jsp
[*] Running command "ffuf -c -r -w /usr/share/wordlists/Bo0oM-fuzz.txt -o scan-ffuf-example.com.txt -e .html,.js,.php,.sql,.xml -t 64 -mc all -fc 404 -u http://example.com/FUZZ -fc 404,502 -fs 1337"
/'___\ /'___\ /'___\
/\ \__/ /\ \__/ __ __ /\ \__/
\ \ ,__\\ \ ,__\/\ \/\ \ \ \ ,__\
\ \ \_/ \ \ \_/\ \ \_\ \ \ \ \_/
\ \_\ \ \_\ \ \____/ \ \_\
\/_/ \/_/ \/___/ \/_/
:: Method : GET
:: URL : http://example.com/FUZZ
:: Wordlist : FUZZ: /usr/share/wordlists/Bo0oM-fuzz.txt
:: Extensions : .html .js .php .sql .xml
:: Output file : scan-ffuf-example.com.txt
:: File format : json
:: Follow redirects : true
:: Calibration : false
:: Timeout : 10
:: Threads : 64
:: Matcher : Response status: all
:: Filter : Response status: 404,502
:: Filter : Response size: 1337
index.html [Status: 200, Size: 1256, Words: 298, Lines: 47]