How to use ffuf - Hacker Toolbox

Подписаться 80 тыс.

Просмотров 44 тыс.

50% 1

ffuf is quickly becoming a key tool for bug bounty hunters, but how do you use it? In this video I start at the basics showing some really neat features of ffuf and how you can use some simple one-liners to do rather complex fuzzing!
Did you know this episode was sponsored by Intigriti? Sign up with my link go.intigriti.com/katie I'm so pleased with everyone's positive response to the Intigriti sponsorship and I'm so pleased you folks are finding bugs and even finding your first bugs! Thank you for being awesome!
ffuf is well known as a brute-forcing tool, but did you know it can be used for so much more than directory discovery?? I didn't! The FUZZ keyword is so powerful you can use it to fuzz headers, parameters, and add filters to cut down false positives. With the right wordlist ffuf can become the go-to tool for bug hunting.
Resources
- ffuf : github.com/ffuf/ffuf
- Installing ffuf into the PATH OSX : superuser.com/questions/7150/...
- Installing ffuf into the PATH Windows : superuser.com/questions/15560...
- SecLists : github.com/danielmiessler/Sec...
- TomNomNom's talk : • Who, What, Where, When...
- Here are the one-liners I use: gist.github.com/InsiderPhD/5c...
- My ffuf translator: insiderphd.dev/tools/ffuf.html
- 0xatul's jq translator: jqplay.org/s/x8xFbIk6S8
- Patrik's jq translator: / 1301086393108758528
Connect with me
- Twitter : / insiderphd
- InsiderPhD Discord : / discord
- Patreon : / insiderphd

Развлечения

Опубликовано:

1 сен 2020

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 119

@dhruvkandpal9909 3 года назад

Oh my god!!! THIS VIDEO DESERVES A HUGE ROUND OF APPLAUSE from the BUG BOUNTY community!! I ABSOLUTELY LOVED IT Katie!!

@richardjones9598 3 года назад

Is very clear and concise info tbf, great job, Katie!

@jawadsaqib1260 3 года назад

You are just awesome explaining everything with so much detail and in-depth knowledge. Thank you for making stuff. More power to you

@hashimmajid7905 Год назад

thank you for your content, it's logical to read docs for any tools, but watching a pro like you using a tool and getting inside your mindset and feeling your enthusiasm is much better learning process, this channel is a gold mine!

@carp6509 2 года назад

I don't know how anyone could downvote this. Amazing content! Thank you so much!

@Ragab0t 3 года назад

Awesome video thanks for sharing! BTW One of the coolest things about teaching about a new subject is how much new stuff you end up learning about said subject. That's probably why teaching is the best way to learn!

@wnmetal666 Год назад

Amazing explanation and examples of the features. I was struggling with too many code 200, this video helped me get that filtered out properly.

@Abhijitkamath14 2 года назад

I really like the way you explain things .... the accent, the tone and all ... smooth

@fenilshah9221 3 года назад

Claps! This is what I was waiting for! I hope you'll soon cover other tools such as gau,gf,etc!

@InsiderPhD 3 года назад

I'm thinking the next videos will be recon: subdomain enum and then a standalone video on amass! But I'll note these down !

@arman-ez3ir Месяц назад

love these kind of tuts, well done

@kon5791 Год назад

thanks for keeping it short and sweet! :) I love me a conciese and easy to follow explanation

@InfoSecIntel 3 года назад

That replay proxy option blew my mind. Thank you!

@InsiderPhD 3 года назад

SAME TBH

@jasonmikinskiwallet4308 3 года назад

Oh WOW!!!!!! This is amazingggg. Ffuf dream tool.

@theblackzeini9004 Год назад

The way you explain is amazing, keep goin'

@rosa3709 10 месяцев назад

The content is great and easy to understand! Thanks 🙏🏼

@varunmehta3230 3 года назад

Such a awesome knowledge sharing video. Thanks a lot ❤️. love from India .

@DeLFeTube 2 года назад

What an insanely good video! Thank you!

@joakimtauren1286 3 года назад

Super great content! Thank you so much!

@kabirsuda 3 года назад

Thanks for the video, love it!💛

@InsiderPhD 3 года назад

You're so welcome!

@mi2has 3 года назад

Thank you for the great video !

@d3vashishs0ni 3 года назад

A very informative video. thank you very much 😊😊

@hellb0y794 2 года назад

Great video katie, thanks 🚀

@super3d201 Год назад

Really great Video and detailed aswell. Thanks, that helped me alot

@maakthon5551 Год назад

Great as usual , Thanks.

@PhayulDigest 3 года назад

Awesome video, thanks so much!

@ygorsardinha5521 Год назад

Katie you Rock!

@brokeitguyio 3 года назад

Thanks for the tutorial

@_0x01m 3 года назад

thank you it was super cool video i learn more with u ..

@omerfarooqdemir9907 3 года назад

thanks for this video. THIS VIDEO AMAZING

@pianodotexe3852 3 года назад

I waited for this ♥️

@InsiderPhD 3 года назад

I hope it was worth the wait!

@pianodotexe3852 3 года назад

@@InsiderPhD yes 🙂 I know about some bugs like spf, cors, xss, clickjacking, subdomain takeover. How to know this website has those vulnerabilities ..... Automatically... Then please recommend me to where to learn vulnerabilities .... I hope you reply

@shayboual1892 3 года назад

very useful and informative video

@cyberindia1 3 года назад

Nice explanation

@d-rey1758 Год назад

Cool vid! any info on the steps between ffuf finds the errors and claiming a bounty?

@vanshajdhar9223 3 года назад

Amazing video 👌👌👌

@zeeshansaeed8997 3 года назад

Thanks, Katie for creating such awesome content.

@InsiderPhD 3 года назад

Thanks for watching!

@TheEasternCoder 3 года назад

Concept of using ffuf replay proxy is amazing. Thanks for introducing a great tool . Is there any method to pipeline the output of crunch/any wordlist generator to ffuf ??🙄

@RUFAID 3 года назад

Thanks for making this type of video. And it is begginer friendly . Plz one favor Plz incress the voice sound little more . Don't take tress, but increase it plz plz please

@InsiderPhD 3 года назад

I've addressed this problem in the video pipeline and it should be fixed now for future videos

@orlyounotinbaires 3 года назад

Excellent video as always, love your enthusiasm! PS: you should do a video together with Stök :D

@InsiderPhD 3 года назад

One day I hope so! We haven't found a good time for us both yet :) though we have had a chat and got a concept of what we wanna do!

@akshaydeodare6149 3 года назад

the video is very dark ! It takes effort to look whats written on the screen ! content : Awesome as always

@InsiderPhD 3 года назад

Thank you for the feedback!

@akshaydeodare6149 3 года назад

InsiderPhD for example : the json part from 10:27

@InsiderPhD 3 года назад

It can sometimes be an issue since people might be watching my videos at a lower quality or on mobile and I'm a bit of an idiot and forget that sometimes! So esp as I try out the dark mode theme, it's useful to get this kind of feedback!

@7he7hief95 3 года назад

Thanks Kate, you make things clearer as always and I love your enthusiasm. Kisses from 7he7hief * meow

@remonsec 3 года назад

Thanks a lot.

@sumanparajuli229 3 года назад

Mam..Please...... can you create a video on how to implement business logic in bug hunting and money practically on a real websites or web apps???????????

@InsiderPhD 3 года назад

I really want to do some live hacking on a real target! But I'm still trying to speak to other hackers/program managers to figure out what the best way might be to demo without breaking confidentiality!

@sumanparajuli229 3 года назад

@@InsiderPhD Ok mam... so please i highly request you to make more videos on business logic for bug...

@anshusharma5199 3 года назад

Someone told me today to use it and see how lucky I am, Thanks 🙏😊

@InsiderPhD 3 года назад

You're welcome 😊 I'm reading your mind obviously :P

@anshusharma5199 3 года назад

@@InsiderPhD thanks again I like the way you teach (10¹²³ * 👍)

@ardaucd Год назад

Is the playlist Everything API Hacking up to date, are all API videos in this channel in this list?

@sy-gamer9556 3 года назад

Your videos are really awesome love it.also I want to ask something I have a jail broken ios device everything setup and ready to go and also I know a little bit of iOS knowledge but I can’t decide by myself what to choose iOS bug bounty or web any suggestion pls..

@InsiderPhD 3 года назад

iOS has a big advantage and disadvantage: Almost no one is doing it, which means there's not as many resources BUT there's a lot more bugs to be found! I would focus on API hacking, it applies to both web+iOS and it's a good way to get started in iOS (EXACTLY the same bugs) without getting lost. I'm actually writing a video at the moment on how to hack on mobile APIs

@sy-gamer9556 3 года назад

InsiderPhD awesome thank u I was just confused a lot thank a lot Katie hugeeee love and thanks

@sy-gamer9556 3 года назад

And 1 more question what are the bugs to look for aside web bugs in iOS applications

@josephnimsara3169 3 года назад

awesome

@Thenileshpatil 10 месяцев назад

hey katie help with what should we look on which type of target

@kevinnyawakira4600 3 года назад

thanks

@jozefwoo8079 Год назад

Very good video. If I may nitpick: it's intigrity and not integrity 🙂

@mastawitcha231 3 года назад

Does it do the same job as wfuzz in every aspect or is one better than the other? both are fuzzing tools

@InsiderPhD 3 года назад

Does the same job, it's written in go so it's a little faster, but it's personal preference. The cool thing about ffuf is the focus on bug bounties and how active the developer is in the community! But feature wise very very similar

@nowonder9466 3 года назад

At 18.02 you said that ME will come from the action wordlist and FUZZ will come from that wordlist while pointing at the second FUZZ. What did you mean by that? The FUZZ part.

@InsiderPhD 3 года назад

Basically if you do -w wordlist.txt:WORD you can use multiple wordlists, or fuzz in multiple areas, or do both!

@ashhadhats4842 3 года назад

Will u creste a video how to creste a custom word list i watching tomnomnom but please u can create your own

@InsiderPhD 3 года назад

This is actually coming soon :) it's something I'm working on a methodology for! But it'll be a while until it's ready!

@saminbinhumayun858 4 месяца назад

If there is scope given in bb program do we need to do directory bruteforcing?

@InsiderPhD 4 месяца назад

I don't, but some people do

@saminbinhumayun858 4 месяца назад

@@InsiderPhD got it..thank you

@picious 3 года назад

when Brute force is out of scope it means that you can't run FFUF or no?? , Thank you for the video !

@InsiderPhD 3 года назад

You can use ffuf! Brute force being out of scope usually means brute forcing user/password combos, they might ask for w delay though and a limit to x requests a second, so keep an eye out for that

@picious 3 года назад

@@InsiderPhD thank you for your reply :)

@mazingerzeta2xx788 3 года назад

What is the difference between Ffuf and Amass? wich one id faster and less complicated to use?

@InsiderPhD 3 года назад

Ffuf is easier for most things, amass has a lot of uses and can be quite complex to use

@mazingerzeta2xx788 3 года назад

but they but they both perform same task right ?

@kandarpmishra6009 3 года назад

How do i know its an API request or response ??

@roninhacked2045 3 года назад

Hey katie , I am new to hacking WHAT is the best OS that you recommend to me Please reply soon

@InsiderPhD 3 года назад

Whatever you're using right now is fine! You don't need to use any OS to get into hacking!

@roninhacked2045 3 года назад

Even if it is windows But how to install them

@moathaljmaan7331 2 года назад

🖐have fife for your explain

@haileleulgirma1087 3 месяца назад

I wanted to be excited just like you, but I just can't find the reason to use it over burp intruder. Given the world lists, both can do the job

@InsiderPhD 3 месяца назад

I also like intruder but I know a lot of people want speed w/o having to pay for pro, so ffuf is a good option

@saikiranlingadally1036 3 года назад

❤️

@InsiderPhD 3 года назад

First comment, very quick!

@saikiranlingadally1036 3 года назад

@@InsiderPhD yeah, hope i will get next one too😊😎

@ricardotech 3 года назад

@recon0x7f16 2 года назад

how do u pipe with this

@josephnimsara3169 3 года назад

can you add nest bug bounty series

@InsiderPhD 3 года назад

Nest?

@josephnimsara3169 3 года назад

@@InsiderPhD sorry next bug bounty series

@InsiderPhD 3 года назад

@@josephnimsara3169 Aha! I'm actually working on a video right now, spoiler alert on account takeovers, it's just not quittteeee ready to be released yet!

@InsiderPhD 3 года назад

It's almost done though, 90%-ish