ffuf-multi-od
A fast web fuzzer written in Go.
Details
Category: Fuzzing
Publisher: trickest-mhmdiaa
Created Date: 4/11/2023
Container: quay.io/trickest/ffuf-multi-od:v2.1.0-patch-1
Source URL: https://github.com/ffuf/ffuf
Parameters
Command:
-raw
- Do not encode URI (default: false)Command:
-sni
- Target TLS SNI, does not support FUZZ keywordCommand:
-json
- JSON output, printing newline-delimited JSON records (default: false)Command:
-mode
- Multi-wordlist operation mode. Available modes: clusterbomb, pitchfork, sniper (default: clusterbomb)Command:
-rate
- Rate of requests per second (default: 0)Command:
- List of target URLsCommand:
-p
- Seconds of `delay` between requests, or a range of random delay. For example 0.1 or 0.1-2.0Command:
-http2
- Use HTTP2 protocol (default: false)Command:
-config
- Load configuration from a fileCommand:
-H
- Header `Name: Value`, separated by colonCommand:
-search
- Search for a FFUFHASH payload from ffuf historyCommand:
-s
- Do not print additional information (silent mode) (default: false)Command:
-maxtime
- Maximum running time in seconds for entire process. (default: 0)Command:
-request
- File containing the raw http requestCommand:
-t
- Number of concurrent threads. (default: 40)Command:
-timeout
- HTTP request timeout in seconds. (default: 10)Command:
-v
- Verbose output, printing full URL and redirect location (if any) with the results. (default: false)Command:
-enc
- Encoders for keywords, eg. 'FUZZ:urlencode b64encode'Command:
-scrapers
- Active scraper groups (default: all)Command:
- Wordlist fileCommand:
-input-cmd
- Command producing the input. --input-num is required when using this input method. Overrides -w.Command:
-input-num
- Number of inputs to test. Used in conjunction with --input-cmd. (default: 100)Command:
-d
- POST dataCommand:
-recursion
- Scan recursively. Only FUZZ keyword is supported, and URL (-u) has to end in it. (default: false)Command:
-ck
- Client key for authentication. Client certificate needs to be defined as well for this to workCommand:
-e
- Comma separated list of extensions. Extends FUZZ keyword.Command:
-mt
- Match how many milliseconds to the first response byte, either greater or less than. EG: >100 or <100Command:
-cc
- Client cert for authentication. Client key needs to be defined as well for this to workCommand:
-b
- Cookie dataCommand:
-fmode
- Filter set operator. Either of: and, or (default: or)Command:
-ft
- Filter by number of milliseconds to the first response byte, either greater or less than. EG: >100 or <100Command:
-X
- HTTP method to use (default: GET)Command:
-ignore-body
- Do not fetch the response content. (default: false)Command:
-input-shell
- Shell to be used for running commandCommand:
-ml
- Match amount of lines in responseCommand:
-mw
- Match amount of words in responseCommand:
-maxtime-job
- Maximum running time in seconds per job. (default: 0)Command:
-scraperfile
- Custom scraper file pathCommand:
-c
- Colorize outputCommand:
-fl
- Filter by amount of lines in response. Comma separated list of line counts and rangesCommand:
-fw
- Filter by amount of words in response. Comma separated list of word counts and rangesCommand:
-mr
- Match regexpCommand:
-mmode
- Matcher set operator. Either of: and, or (default: or)Command:
-replay-proxy
- Replay matched requests using this proxy.Command:
-fr
- Filter regexpCommand:
-of
- Output file format. Available formats: json, ejson, html, md, csv, ecsv (default: json)Command:
-request-proto
- Protocol to use along with raw request (default: https)Command:
-x
- Proxy URL (SOCKS5 or HTTP). For example: http://127.0.0.1:8080 or socks5://127.0.0.1:8080Command:
-ac
- Automatically calibrate filtering options (default: false)Command:
-recursion-depth
- Maximum recursion depth. (default: 0)Command:
-r
- Follow redirects (default: false)Command:
-sf
- Stop when > 95% of responses return 403 Forbidden (default: false)Command:
-mc
- Match HTTP status codes, or all for everything. (default: 200,204,301,302,307,401,403Command:
-recursion-strategy
- Recursion strategy: default for a redirect based, and greedy to recurse on all matches (default: default)Command:
-sa
- Stop on all error cases. Implies -sf and -se. (default: false)Command:
-fc
- Filter HTTP status codes from response. Comma separated list of codes and rangesCommand:
-ms
- Match HTTP response sizeCommand:
-fs
- Filter HTTP response size. Comma separated list of sizes and rangesCommand:
-ach
- Per host autocalibration (default: false)Command:
-acc
- Custom auto-calibration string. Can be used multiple times. Implies -acCommand:
-or
- Don't create the output file if we don't have results (default: false)Command:
-ack
- Autocalibration keyword (default: FUZZ)Command:
-se
- Stop on spurious errors (default: false)Command:
-acs
- Custom auto-calibration strategies. Can be used multiple times. Implies -acCommand:
-ignore-body
- Do not fetch the response content. (default: false)Command:
-ic
- Ignore wordlist comments (default: false)Command:
-D
- DirSearch wordlist compatibility mode. Used in conjunction with -e flag. (default: false)