How ZFuzz works

ZFuzz CLI

class zfuzz.cli.ZFuzzCLI

Handle zfuzz CLI

main(argv)

ZFuzz main method

Parameters:argv – Command line arguments list
parse_args(argv)

ZFuzz Argument parser

Parameters:argv – Command line arguments list
Returns:Arguments parsed
print_banner()

Print the zfuzz banner

print_help()

Print the help banner

Argparse custom actions

class zfuzz.action.DataAction(option_strings, dest, nargs=None, const=None, default=None, type=None, choices=None, required=False, help=None, metavar=None)

Parse data values

class zfuzz.action.DictAction(option_strings, dest, nargs=None, const=None, default=None, type=None, choices=None, required=False, help=None, metavar=None)

Create a dict from an str

class zfuzz.action.ListAction(option_strings, dest, nargs=None, const=None, default=None, type=None, choices=None, required=False, help=None, metavar=None)

Convert items separated by commas to a list

class zfuzz.action.RangeAction(mini, maxi, *args, **kwargs)

Check the range of an argument

class zfuzz.action.UrlAction(option_strings, dest, nargs=None, const=None, default=None, type=None, choices=None, required=False, help=None, metavar=None)

Check the format of an url

The Fuzzer

Utils

zfuzz.utils.get_code_color(code)

Return http code colors

Parameters:code – HTTP Status code
Returns:HTTP Code color
zfuzz.utils.is_matching(code, hc, sc, content, hs, ss)

Determinate if the given response match the given filters

Parameters:
  • code – HTTP Status code
  • hc – HTTP Code(s) to hide
  • sc – HTTP Code(s) to show
  • content – Response content
  • hs – Hide response with hs
  • ss – Show response with ss
Returns:

True/False, depending of the filter

zfuzz.utils.replace_kv_dict(d, keyword, string)

Replace each key and value of a dict

Parameters:
  • d – The dict to replace
  • keyword – The keyword to replace in the dict
  • string – The string that will replace the keyword