subdomain fuzz update

This commit is contained in:
Roman Hergenreder 2021-05-09 22:46:29 +02:00
parent 4aab478862
commit e0e5ce3228

@ -26,10 +26,11 @@ IP_ADDRESS=$(echo $output | head -n 1 | awk '{print $NF}')
echo "[+] IP-Address: ${IP_ADDRESS}" echo "[+] IP-Address: ${IP_ADDRESS}"
echo "[ ] Retrieving default site…" echo "[ ] Retrieving default site…"
charcount=$(curl -s -L "${PROTOCOL}://${DOMAIN}" -k | wc -m) charcountDomain=$(curl -s -L "${PROTOCOL}://${DOMAIN}" -k | wc -m)
echo "[+] Chars: ${charcount}" charcountIpAddress=$(curl -s -L "${PROTOCOL}://${IP_ADDRESS}" -k | wc -m)
echo "[+] Chars: ${charcountDomain} and ${charcountIpAddress}"
echo "[ ] Fuzzing…" echo "[ ] Fuzzing…"
ffuf --fs ${charcount} --fc 400,500 \ ffuf --fs ${charcountDomain},${charcountIpAddress} --fc 400,500 --mc all \
-w /usr/share/wordlists/SecLists/Discovery/Web-Content/raft-large-words-lowercase.txt \ -w /usr/share/wordlists/SecLists/Discovery/Web-Content/raft-large-words-lowercase.txt \
-u "${PROTOCOL}://${IP_ADDRESS}" -H "Host: FUZZ.${DOMAIN}" -u "${PROTOCOL}://${IP_ADDRESS}" -H "Host: FUZZ.${DOMAIN}"