Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/pigeonhands/fuzz-rs

HTTP Directory Fuzzer/Buster written in Rust similar to dirbuster.
https://github.com/pigeonhands/fuzz-rs

buster fuzzing pentesting rust-lang tool web

Last synced: 5 days ago
JSON representation

HTTP Directory Fuzzer/Buster written in Rust similar to dirbuster.

Host: GitHub
URL: https://github.com/pigeonhands/fuzz-rs
Owner: pigeonhands
Created: 2020-04-21T11:12:03.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2020-04-25T07:51:49.000Z (over 4 years ago)
Last Synced: 2024-09-25T20:17:49.400Z (8 days ago)
Topics: buster, fuzzing, pentesting, rust-lang, tool, web
Language: Rust
Homepage:
Size: 49.8 KB
Stars: 3
Watchers: 2
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # fuzz-rs

[![](https://img.shields.io/crates/v/fuzz?style=for-the-badge)](https://crates.io/crates/fuzz)

```

cargo install fuzz

```

fuzz is a bruteforce/fuzzing tool written in rust to be working right away.

__Requires rust `nightly` to build__

Currently supported

| Feature | Description|

|----------|-------|

| [httpdir](#HttpDir) | http directory fuzzer/buster |

### **HttpDir** mode

Used to find http paths that return success http status codes `200`-`299`

### Basic usage:

| Command | Description |

| --------|------------|

|``` fuzz httpdir http://example.com ```| Use [default word list](https://github.com/digination/dirbuster-ng/blob/master/wordlists/common.txt) and no extentions |

| ```fuzz httpdir http://example.com -f --ignore-code 403 404``` | Log all requests except `403` and `404` status codes|

| ```fuzz httpdir http://example.com -x txt php``` | Append `.txt` and `.php` to each request (as well as the base word)|

Using `--default-ext` will add [extensions_common.txt](https://github.com/digination/dirbuster-ng/blob/master/wordlists/extensions_common.txt) to the extentions.

### Full usage:

```

USAGE:

    fuzz.exe httpdir [FLAGS] [OPTIONS] 

ARGS:

    

FLAGS:

        --default-ext    Use default extention list (adds to -x if any)

    -e, --expand-url     Show full url (rather than /)

    -g, --gzip           Compresss requests qith gzip

    -h, --help           Prints help information

    -f, --print-fails    Print/output non-success requests

        --silent         Disable console output

    -V, --version        Prints version information

OPTIONS:

    -d, --delay                     Minimum delay between word processing [default: 0]

    -x, --extentions ...       List of file extentions to append to word

        --ignore-code ...    List of status codes to ignore

    -o, --out-file               Save output to specified file

    -P, --password               Basic auth password

    -t, --threads                 Number of threads to use for fuzzing [default: 10]

        --timeout                 Http timeout in ms [default: 0]

        --agent                Request user agent

    -u, --username               Basic auth username

    -w, --word-list             Input work list used to fuzz

```