utilities/feroxbuster
utilities/feroxbuster
1
0
Fork 0
mirror of https://github.com/epi052/feroxbuster synced 2024-07-05 16:58:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
20 Commits 16 Branches 78 Tags 25 MiB
Rust 93.8%
Shell 2.4%
PowerShell 2.3%
Elvish 1%
Makefile 0.2%
Other 0.2%
f595842b55
Go to file
epi f595842b55 added addslash option
2020-09-03 19:42:48 -05:00
.github/workflows refactored a few functions; added CI; clippy'd codebase 2020-08-30 07:40:58 -05:00
src added addslash option 2020-09-03 19:42:48 -05:00
.gitignore added feroxbuster.toml parsing as a config option 2020-08-28 21:25:02 -05:00
Cargo.toml added headers option 2020-09-03 09:05:35 -05:00
feroxbuster.toml.example added addslash option 2020-09-03 19:42:48 -05:00
LICENSE Initial commit 2020-08-22 10:36:20 -05:00
README.md added addslash option 2020-09-03 19:42:48 -05:00

README.md

feroxbuster

feroxbuster is a fast, simple, recursive content discovery tool written in Rust.

Table of Contents

Downloads

There are pre-built binaries for the following systems:

Installation

Configuration

Defaults

Configuration begins with with the following built-in default values baked into the binary:

  • timeout: 7 seconds
  • follow redirects: false
  • wordlist: /usr/share/seclists/Discovery/Web-Content/raft-medium-directories.txt
  • threads: 50
  • verbosity: 0 (no logging enabled)
  • statuscodes: 200 204 301 302 307 308 401 403 405

feroxbuster.toml

After setting built-in default values, any values defined in a feroxbuster.toml config file will override the built-in defaults. If feroxbuster.toml is not found in the current directory, nothing happens at this stage.

For example, say that we prefer to use a different wordlist as our default when scanning; we can set the wordlist value in the config file to override the baked-in default.

Notes of interest:

  • it's ok to only specify values you want to change without specifying anything else
  • variable names in feroxbuster.toml must match their command-line counterpart
# feroxbuster.toml

wordlist = "/wordlists/jhaddix/all.txt"

Example usage of all available settings in feroxbuster.toml (can also be found in feroxbuster.toml.example)

# feroxbuster.toml

wordlist = "/wordlists/jhaddix/all.txt"
statuscodes = [200, 403]
threads = 40
timeout = 5
proxy = "http://127.0.0.1:8080"
verbosity = 1
quiet = true
verbosity = 1
output = "/some/output/file/path"
follow_redirects = true
insecure = true
extensions = ["php", "html"]
headers = {"Accept" = "application/json"}
norecursion = true
addslash = true

Command Line Parsing

Finally, any options/arguments given on the commandline will override both built-in and config-file specified values.

USAGE:
    feroxbuster [FLAGS] [OPTIONS] --url <URL>

FLAGS:
    -h, --help         Prints help information
    -V, --version      Prints version information
    -v, --verbosity    Increase verbosity level (use -vv or more for greater effect)

OPTIONS:
    -p, --proxy <proxy>                   Proxy to use for requests (ex: http(s)://host:port, socks5://host:port)
    -s, --statuscodes <STATUS_CODE>...    Status Codes of interest (default: 200 204 301 302 307 308 401 403 405)
    -t, --threads <THREADS>               Number of concurrent threads (default: 50)
    -T, --timeout <SECONDS>               Number of seconds before a request times out (default: 7)
    -u, --url <URL>                       The target URL
    -w, --wordlist <FILE>                 Path to the wordlist

Comparison w/ Similar Tools

How does feroxbuster compare to gobuster

How does feroxbuster compare to ffuf

How does feroxbuster compare to rustbuster