ivuorinen/cheatsheet-tldr
1
0
Fork 0
mirror of https://github.com/ivuorinen/cheatsheet-tldr.git synced 2026-02-26 16:53:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update cheatsheets

Browse Source
This commit is contained in:
ivuorinen
2024-04-03 00:13:38 +00:00
parent 942e2489a7
commit 8f2c5085f9
5 changed files with 69 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
tldr/ffuf
View File

@@ -13,7 +13,7 @@ source: https://github.com/tldr-pages/tldr.git
`ffuf -c -w {{path/to/wordlist.txt}} -u {{http://target/FUZZ}}`
- Enumerate subdomains by changing the position of the keyword:
- Enumerate webservers of subdomains by changing the position of the keyword:
`ffuf -w {{path/to/subdomains.txt}} -u {{http://FUZZ.target.com}}`
@@ -28,3 +28,11 @@ source: https://github.com/tldr-pages/tldr.git
- Fuzz with specified HTTP method and [d]ata, while [f]iltering out comma separated status [c]odes:
`ffuf -w {{path/to/postdata.txt}} -X {{POST}} -d "{{username=admin\&password=FUZZ}}" -u {{http://target/login.php}} -fc {{401,403}}`
- Fuzz multiple positions with multiple wordlists using different modes:
`ffuf -w {{path/to/keys:KEY}} -w {{path/to/values:VALUE}} -mode {{pitchfork|clusterbomb}} -u {{http://target.com/id?KEY=VALUE}}`
- Proxy requests through a HTTP MITM pro[x]y (such as Burp Suite or `mitmproxy`):
`ffuf -w {{path/to/wordlist}} -x {{http://127.0.0.1:8080}} -u {{http://target.com/FUZZ}}`