{"id":19311036,"url":"https://github.com/a0s/access_log_fuzzing_detector","last_synced_at":"2026-05-15T22:02:37.599Z","repository":{"id":146414637,"uuid":"264916553","full_name":"a0s/access_log_fuzzing_detector","owner":"a0s","description":"Scans access.log and detects fuzzing attempts.","archived":false,"fork":false,"pushed_at":"2020-05-21T08:52:22.000Z","size":14,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-01-06T02:12:16.814Z","etag":null,"topics":["fuzzing","nginx","ruby"],"latest_commit_sha":null,"homepage":"https://github.com/a0s/access_log_fuzzing_detector","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/a0s.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-05-18T11:19:44.000Z","updated_at":"2023-09-14T19:23:30.000Z","dependencies_parsed_at":null,"dependency_job_id":"df5143ed-f3ff-4c22-89e1-04e9c6721d7c","html_url":"https://github.com/a0s/access_log_fuzzing_detector","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a0s%2Faccess_log_fuzzing_detector","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a0s%2Faccess_log_fuzzing_detector/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a0s%2Faccess_log_fuzzing_detector/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a0s%2Faccess_log_fuzzing_detector/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/a0s","download_url":"https://codeload.github.com/a0s/access_log_fuzzing_detector/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240412090,"owners_count":19797204,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["fuzzing","nginx","ruby"],"created_at":"2024-11-10T00:27:26.135Z","updated_at":"2025-10-12T06:37:46.466Z","avatar_url":"https://github.com/a0s.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Access.log Fuzzing Detector\nVery simple (and stupid) scanner that able to detect attempts of [fuzzing](https://en.wikipedia.org/wiki/Fuzzing).\n\n\n![](https://user-images.githubusercontent.com/418868/82338139-31d06680-99f5-11ea-8c88-beb33b5ed97a.gif)\n\n## Features\n\n* fast search in dictionary\n* unlimited size of dictionary\n\n## Prerequisites\n\n* ruby interpretator in PATH\n* access.log should be in [default nginx format](https://nginx.org/en/docs/http/ngx_http_log_module.html)\n* downloaded fuzzing dictionary `fuzz.txt` (for example, you cat get it [here](https://github.com/Bo0oM/fuzz.txt/blob/master/fuzz.txt), \n[here](https://github.com/maurosoria/dirsearch/blob/master/db/dicc.txt), or [here](https://github.com/daviddias/node-dirbuster/tree/master/lists))\n\n## Usage\n\nSend access.log to stdin, and scanner will return you suspicious requests to stdout. Use `cat`\n\n```sh\ncat access.log | ruby scanner fuzz.txt\n```\nor `pv` if you want to see overall progress/speed\n```sh\npv access.log | ruby scanner fuzz.txt\n```\n## How it works\nEvery input line in stdin will process by stages:\n1) Parse request with [regular expression](https://github.com/a0s/access_log_fuzzing_detector/commit/ebea2fad1cdc062aa770123098fd044d47f7de1b#diff-bbdaea376f500d25f6b0c1050311dd07R26). In case of failure it returns `RegexpSucks` exception :)\n2) Check `method` of request. Allowed methods are `GET HEAD POST PUT DELETE CONNECT OPTIONS TRACE PATCH`\n3) Check `protocol` of request. Allower protocols are `HTTP/1.0 HTTP/1.1`\n4) For every `line/from/dictionary` we will check:\n   * `request_uri` not start with `line/from/dictionary`\n   * `request_uri` not start with `/line/from/dictionary`\n   * `request_uri` not end with `line/from/dictionary`\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fa0s%2Faccess_log_fuzzing_detector","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fa0s%2Faccess_log_fuzzing_detector","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fa0s%2Faccess_log_fuzzing_detector/lists"}