Software for fuzzing, used on web application pentestings.
--replay-proxy PROXY
;Matcher
option to match responses by regex -Mr REGEX
;Filter
:
-Fc STATUS
;-Fr REGEX
;--recursion
) on path fuzzing;--max-rlevel RLEVEL
);--scanner
argument);Backups
;Wappalyzer
;Find
plugin (replaced by match by regex);Matcher
, when set multiple match options and only one is considered;DnsZone
plugin when set an invalid hostname;split_str_to_list
;FuzzingTool
to fuzzingtool
;Dictionary
object will enqueue Payload
objects into the payloads queue;Payload
has his own recursion level attribute (Payload.rlevel
) to tell about the job recursion level;HttpHistory
object to store the information about the request and response into the result object, including the ip address when do a subdomain fuzzing;http_utils
module to UrlParse
class;inspect_result
method from scanners. Now they will append results in the _process
method;append_args
, no longer needed;utils/consts
;logger
and reports
to persistence
directory;PluginFactory
methods;api
to outside of a specific folder;utils/argument_utils
;--save-payload-conf
);--save-headers
);--save-body
);-Mw QTY_WORDS
);-Ml QTY_LINES
);build_target_from_raw_http
;Requester
;Robots
plugin, that wasn't raising an exception when the robots.txt page was not found;print_config
to show only the target and dictionary configurations;cli_callback
from the scanners;$
to FUZZ
;Matcher
callbacks;fuzzingtool/objects
directory to store the FuzzingTool objects;ArgumentParser
to CliArguments
;ArgumentBuilder
methods;RequesterFactory
;HtmlDec
- encode the payload to html decimal format;HtmlHex
- encode the payload to html hexadecimal format;--encode-only
argument;--unique
argument;DnsDumpster
plugin to the wordlists (see Plugin wordlists);Grep
plugin to the scanners (see Plugin scanners);For detailed information about the new encoder features, see Encoders.
WordlistFactory
exception to no longer show NoneType
exception, when specifying multiple targets for wordlists without parameters;isSession
in the class constructor to define if the requester will use a session request;conn/RequestParser
to utils/http_utils
;Request
to the Fuzzer
;utils/utils
to utils/file_utils
;Logger
to utils/Logger
;HttpFactory
to RequestFactory
;utils/consts
to handle with fuzzing types information, output directory, and also the app fuzzing mark;-w
, or a global wordlist using only one -w
;-w 'wordlist1;wordlist2'
;--no-colors
;-S, --simple-output
;PathScanner
status codes coloring;Request
;Logger
that wasn't writting in the logfile;PluginFactory
no longer raises a PluginNotFound exception. This exception was transfered to the classCreator in the same factory.ArgumentParser
that extends the argparse.ArgumentParser
;Dictionary
class from the wordlists;CliOutput
;BlacklistStatus
;Response
class. Now the Request
object will return a tuple of items: the raw response from the requests library, and the RTT. The SubdomainRequest
appends the target's ip to this tuple;Result
Matcher
from the scanners;interfaces
directory;cli
to interfaces/cli
;parsers
directory;-u
);-r
);exceptions
directory;utils
directory;