dast-ffuf

# ffuf - Fast Web Fuzzer ## Overview ffuf is a fast web fuzzer written in Go designed for discovering hidden resources, testing parameters, and performing comprehensive web application reconnaissance. It uses the FUZZ keyword as a placeholder for wordlist entries and supports advanced filtering, multiple fuzzing modes, and recursive scanning for thorough security assessments. ## Installation ```bash # Using Go go install github.com/ffuf/ffuf/v2@latest # Using package managers # Debian/Ubuntu apt install ffuf # macOS brew install ffuf # Or download pre-compiled binary from GitHub releases ``` ## Quick Start Basic directory fuzzing: ```bash # Directory discovery ffuf -u https://example.com/FUZZ -w /usr/share/wordlists/dirb/common.txt # File discovery with extension ffuf -u https://example.com/FUZZ -w wordlist.txt -e .php,.html,.txt # Virtual host discovery ffuf -u https://example.com -H "Host: FUZZ.example.com" -w subdomains.txt ``` ## Core Workflows ### Workflow 1: Directory and File Enumeration For discovering hidden resources on web applications: 1. Start with common directory wordlist: ```bash ffuf -u https://target.com/FUZZ \ -w /usr/share/seclists/Discovery/Web-Content/common.txt \ -mc 200,204,301,302,307,401,403 \ -o results.json ``` 2. Review discovered directories (focus on 200, 403 status codes) 3. Enumerate files in discovered directories: ```bash ffuf -u https://target.com/admin/FUZZ \ -w /usr/share/seclists/Discove...