天和樹脂-浙江-上海-南通-http://www.chinaresins.com

AdSense

        

Brutality: A Fuzzer For Any GET Entries

發佈者: INTERTOTOALLEN on 2020年5月16日星期六 上午12:34

Brutalitys' Features

  • Multi-threading on demand.
  • Fuzzing, bruteforcing GET params.
  • Find admin panels.
  • Colored output.
  • Hide results by return code, word numbers.
  • Proxy support.
  • Big wordlist.
Screenshots:

Brutality's Installtion

How to use Brutality?

Examples:
   Use default wordlist with 5 threads (-t 5) and hide 404 messages (–e 404) to fuzz the given URL (http://192.168.1.1/FUZZ):
python brutality.py -u 'http://192.168.1.1/FUZZ' -t 5 -e 404

   Use common_pass.txt wordlist (-f ./wordlist/common_pass.txt), remove response with 6969 length (-r 6969) and proxy at 127.0.0.1:8080 (-p http://127.0.0.1:8080) to fuzz the given URL (http://192.168.1.1/brute.php?username=admin&password=FUZZ&submit=submit#):
python brutality.py -u 'http://192.168.1.1/brute.php?username=admin&password=FUZZ&submit=submit#' -f ./wordlist/common_pass.txt -r 6969 -p http://127.0.0.1:8080

ToDo List:
  • Smooth output.
  • Export file report.
  • Modularization.

More articles


  1. Hacking Windows: Ataques A Sistemas Y Redes Microsoft
  2. Arduino Hacking
  3. Geekprank Hacking
  4. Hacking Ético
  5. Hacking Games Online
  6. Hacking Web Technologies Pdf

0 留言:

發佈留言

訂閱: 發佈留言 (Atom)