Cheat Sheet Hacking
  • 🌐Generic Ideas
    • File Transfer
    • Reverse Shell
    • Cracking Tricks
    • Tunneling and Port Forwarding
    • Reversing
    • OSINT
    • Phishing
  • 🐕‍🦺Port enumeration
    • Reconnaissance
    • 53 - DNS
    • 80,443 - Web
      • Identify php.ini file used
      • Exploitation
        • File Upload
        • XXS
    • 445 - SMB
    • 389, 636, 3268 - LDAP(S)
  • LINUX THINGS
    • Enumeration
    • Privilege Escalation
      • Writable $PATH
  • WINDOWS THINGS
    • Enumeration
    • Useful Commands
    • Active Directory Methodology
      • Commands to create AD environment
      • Attacks
        • Kerberos
          • User enumeration
          • ASREP-Roast
          • Kerberoasting
          • ASREP-Roast VS Kerberoasting
          • Golden Ticket
          • Resource Based Constrained Delegation
        • Secrets dump
        • Pass The Hash
        • Dump NTDS
        • Tickets
          • TGT
        • NTML Password Spray
        • LDAP Authentication
          • LDAP Pass-back
          • Rogue LDAP Server
        • SMB Relay (LLNMR, NTB-NS & WPAD)
        • NTLM Relay
        • Tools to exploit AD things
        • SCF Files
      • Kerberos
      • SAM & LSA secrets
      • Enumeration
        • BloodHound
        • PowerView
          • CheatSheet of Commands
        • Set DNS & DOMAIN
      • Resources
      • RunAs
      • Post Explotation
        • Persistence
        • Mimikatz
      • Common used tools
  • 🕳️Pivoting
    • Port Forwarding
    • Socks Forwarding
    • Routing
    • Web Fuzzing
    • Transfer files
    • Metasploit
      • Single Pivot
      • Double Pivot
    • Burp Suite
  • 🎛️Hardware
    • Physical attacks
  • 🌕Buffer Overflow
    • Introduction
    • Stack-Based
      • Introduction
        • Spiking
        • Fuzzing
        • Find Offset
        • Overwrite EIP
        • Find module
        • Find Badchars
        • Shellcode
  • 🐳Docker
    • Commands
    • Practical examples
  • 💡Useful things
    • Burp Suite
      • Proxy Activation
    • Linux Commands
    • Recreate multipart/form-data request
      • Python
      • HTML & netcat
    • TTY
    • Templates for reports (exams)
    • Tmux
    • Other cheat sheets
Powered by GitBook
On this page
  • ffuf
  • Install proxy.py library
  • wfuzz
  1. Pivoting

Web Fuzzing

PreviousRoutingNextTransfer files

Last updated 5 months ago

ffuf

From here

Using only proxychains before ffuf doesn't work, but thanks to we found a path to actually use ffuf with proxychains.

Install proxy.py library

From here 

python3 -m venv virtual-environment-to-proxy
source virtual-environment-to-proxy/bin/activate
pip3 install --upgrade proxy.py

Serve a proxy server with proxychains:

proxychains proxy
[...]
2525-25-25 25:25:25,901 - pid:2281626 [I] plugins.load:85 - Loaded plugin proxy.http.proxy.HttpProxyPlugin
2525-25-25 25:25:25,901 - pid:2281626 [I] tcp.listen:80 - Listening on 127.0.0.1:8899
2525-25-25 25:25:25,907 - pid:2281626 [I] pool.setup:105 - Started 2 acceptors in threadless (local) mode
[...]
# or maybe there is no output, but is running (:

Run ffuf targeting to proxy:

ffuf -c -w wordlist.txt -x http://127.0.0.1:8899 -u http://10.10.10.10/FUZZ

wfuzz

proxychains -q wfuzz -c -w wordlist.txt -u http://10.10.10.10/FUZZ

From here

🕳️
https://github.com/ffuf/ffuf
this concern
https://pypi.org/project/proxy.py
https://github.com/xmendez/wfuzz