Web Hacking: Fuzzing & Directory Busting

Directory & File Brute-Forcing (Feroxbuster)

A fast, recursive content discovery tool written in Rust.

feroxbuster -u http://{{target_ip}} -w {{wordlist}} -x php,html,txt

Directory Brute-Forcing (Gobuster)

A classic tool for discovering hidden directories and files on a web server.

gobuster dir -u http://{{target_ip}} -w {{wordlist}} -t 50

Advanced Fuzzing (ffuf)

A highly versatile web fuzzer used for directory discovery, virtual host discovery, and parameter fuzzing.

ffuf -u http://{{target_ip}}/FUZZ -w {{wordlist}} -mc 200,301,302

Subdomain Enumeration (Subfinder / Amass)

Discover subdomains to expand the target’s attack surface.

subfinder -d {{domain}}
amass enum -d {{domain}}

VHost Fuzzing (ffuf)

Identify virtual hosts by fuzzing the ‘Host’ header.

ffuf -u http://{{target_ip}} -H "Host: FUZZ.{{domain}}" -w {{wordlist}} -fs {{size_to_filter}}

Description

Web fuzzing is a technique used to discover hidden resources, parameters, and configurations on a web server by brute-forcing various inputs. In PNPT, tools like Feroxbuster, Gobuster, and ffuf are essential for uncovering admin panels, backup files, and vulnerable endpoints that are not linked from the main page.

References

• https://github.com/epi052/feroxbuster
• https://github.com/OJ/gobuster
• https://github.com/ffuf/ffuf
• https://tcm-sec.com/