https://github.com/fakhrifnnn/dir-fuzz

DirFuzz is a powerful directory brute-forcing tool for web servers, designed to discover hidden files and directories using customizable wordlists and various HTTP request options. Perfect for security researchers and web developers! 🔍
https://github.com/fakhrifnnn/dir-fuzz

awesome bugbounty burpsuite fuzz-tool paper-list pentest python research-paper security testing web-directory web-directory-bruteforcer web-directory-search wordlist

Last synced: about 1 month ago
JSON representation

DirFuzz is a powerful directory brute-forcing tool for web servers, designed to discover hidden files and directories using customizable wordlists and various HTTP request options. Perfect for security researchers and web developers! 🔍

• Host: GitHub
• URL: https://github.com/fakhrifnnn/dir-fuzz
• Owner: fakhrifnnn
• License: mit
• Created: 2025-04-22T16:04:01.000Z (about 1 month ago)
• Default Branch: MY-Repo
• Last Pushed: 2025-04-23T14:41:57.000Z (about 1 month ago)
• Last Synced: 2025-04-23T15:16:23.001Z (about 1 month ago)
• Topics: awesome, bugbounty, burpsuite, fuzz-tool, paper-list, pentest, python, research-paper, security, testing, web-directory, web-directory-bruteforcer, web-directory-search, wordlist
• Language: Python
• Size: 13.7 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# DIR-Fuzz: A Powerful Directory Brute-Forcing Tool for Web Servers 🔍

![GitHub release](https://img.shields.io/badge/release-latest-brightgreen)  

[Download the latest release](https://github.com/fakhrifnnn/DIR-Fuzz/releases)  

## Table of Contents

1. [Introduction](#introduction)

2. [Features](#features)

3. [Installation](#installation)

4. [Usage](#usage)

5. [Customization](#customization)

6. [Contributing](#contributing)

7. [License](#license)

8. [Contact](#contact)

---

## Introduction

DIR-Fuzz is a robust tool designed for security researchers and web developers. It helps uncover hidden files and directories on web servers through directory brute-forcing. With customizable wordlists and various HTTP request options, DIR-Fuzz makes it easy to find vulnerabilities and enhance web security.

For the latest version, please [download it here](https://github.com/fakhrifnnn/DIR-Fuzz/releases).

## Features

- **Customizable Wordlists**: Use your own wordlists or choose from a variety of built-in options.

- **Multiple HTTP Methods**: Supports GET, POST, and more, allowing for flexible requests.

- **Verbose Output**: Get detailed logs of the scanning process for better analysis.

- **User-Friendly Interface**: Simple command-line interface for ease of use.

- **Fast and Efficient**: Optimized for speed, allowing for quick scans without sacrificing accuracy.

- **Cross-Platform**: Works on Windows, macOS, and Linux.

- **Open Source**: Free to use and modify under the MIT License.

## Installation

To install DIR-Fuzz, follow these steps:

1. **Clone the Repository**: Open your terminal and run the following command:

   ```bash

   git clone https://github.com/fakhrifnnn/DIR-Fuzz.git

   ```

2. **Navigate to the Directory**:

   ```bash

   cd DIR-Fuzz

   ```

3. **Install Dependencies**: Make sure you have Python 3 installed. Then, run:

   ```bash

   pip install -r requirements.txt

   ```

4. **Run the Tool**: After installation, you can start using DIR-Fuzz right away.

## Usage

Using DIR-Fuzz is straightforward. Here’s a basic command to get you started:

```bash

python dir_fuzz.py -u  -w 

```

### Command Options

- `-u` or `--url`: Specify the target URL.

- `-w` or `--wordlist`: Provide the path to your wordlist file.

- `-m` or `--method`: Choose the HTTP method (GET, POST, etc.).

- `-v` or `--verbose`: Enable verbose output for detailed logs.

### Example

Here’s an example of how to run DIR-Fuzz:

```bash

python dir_fuzz.py -u https://example.com -w wordlist.txt -m GET -v

```

This command will scan `https://example.com` using the specified wordlist with GET requests and provide verbose output.

## Customization

You can customize DIR-Fuzz to suit your needs:

- **Wordlists**: Create your own wordlists or modify existing ones to target specific directories.

- **HTTP Headers**: Add custom headers to your requests for better control over the scanning process.

- **Timeout Settings**: Adjust timeout settings to handle slow responses from the server.

### Adding Custom Headers

To add custom headers, use the `-H` option:

```bash

python dir_fuzz.py -u https://example.com -w wordlist.txt -H "User-Agent: MyCustomUserAgent"

```

### Timeout Settings

To set a timeout, use the `--timeout` option:

```bash

python dir_fuzz.py -u https://example.com -w wordlist.txt --timeout 5

```

## Contributing

We welcome contributions! If you want to help improve DIR-Fuzz, please follow these steps:

1. **Fork the Repository**: Click the "Fork" button on the top right of the repository page.

2. **Create a New Branch**: 

   ```bash

   git checkout -b feature/YourFeature

   ```

3. **Make Your Changes**: Implement your feature or fix a bug.

4. **Commit Your Changes**: 

   ```bash

   git commit -m "Add Your Feature"

   ```

5. **Push to Your Fork**: 

   ```bash

   git push origin feature/YourFeature

   ```

6. **Create a Pull Request**: Go to the original repository and submit a pull request.

## License

DIR-Fuzz is licensed under the MIT License. See the [LICENSE](LICENSE) file for more details.

## Contact

For questions or feedback, feel free to reach out:

- **Email**: [email protected]

- **Twitter**: [@your_twitter_handle](https://twitter.com/your_twitter_handle)

For the latest releases, please visit [this link](https://github.com/fakhrifnnn/DIR-Fuzz/releases). 

---

Thank you for using DIR-Fuzz! Happy scanning!