Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/vulnpire/replfuzz

Scan URLs for vulnerabilities by injecting custom payloads into parameters
https://github.com/vulnpire/replfuzz

fuzzing lfi open-redir parameters rce ssrf xss

Last synced: 1 day ago
JSON representation

Scan URLs for vulnerabilities by injecting custom payloads into parameters

Host: GitHub
URL: https://github.com/vulnpire/replfuzz
Owner: Vulnpire
Created: 2024-08-16T14:57:02.000Z (5 months ago)
Default Branch: main
Last Pushed: 2024-08-23T13:57:55.000Z (5 months ago)
Last Synced: 2024-08-23T15:32:06.571Z (5 months ago)
Topics: fuzzing, lfi, open-redir, parameters, rce, ssrf, xss
Language: Go
Homepage:
Size: 211 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Replace & Fuzz

replaces parameter values in URLs with payloads from a wordlist. It reads URLs from standard input, applies payloads from a wordlist to parameters specified in a parameter file, and outputs the modified URLs.

## Features

- Replaces values of specified parameters with payloads from a wordlist.
- Preserves special characters (`&`, `?`) in URLs.
- Filters out URLs that do not contain any of the specified parameters.

## Install

`go install -v github.com/Vulnpire/replfuzz@latest`

## Usage

1. **Prepare Files**:
- **`wordlist.txt`**: A list of payloads, one per line.
- **`params.txt`**: A list of parameters to be replaced in URLs. Format: `key=` (e.g., `file=`, `redirect=`).

![image](https://github.com/user-attachments/assets/f6cf1ce9-1154-4c06-a484-a99af73f2d4b)