ZFuzz Web Fuzzer¶
ZFuzz is an opensource web fuzzer written in Python (See Wfuzz for more advanced features)
Usage exemple:
$ ./zfuzz.py -w /mywordlist -u https://example.com/^FUZZ^ --sc 200
___
___| _|_ _ ___ ___
|- _| _| | |- _|- _|
|___|_| |___|___|___| v1.2
[TARGET] https://example.com/<fuzz>
[27:58] [200]: admin
[27:58] [200]: robots.txt
[27:58] [200]: js
[27:58] [200]: css
[27:59] [200]: cgi-bin
[27:59] [200]: about
[28:00] [200]: accounts
[28:00] Total time: 3s
Features
- Multithreaded
- Allows fuzzing of HTTP headers, POST data, cookies, and different parts of URL
- Very simple architecture/code so you can easily contribute to the project
- Easy to use and a nice interface
ZFuzz needs Python v3 to work, and it must be run on Linux