M A C H E T E






FFUF
DESCRIPTION: Tool used perform directory enumeration on a web application.

C1: ffuf -w /path/to/wordlist:FUZZ -u URL/FUZZ
SAMPLE: ffuf -w /usr/share/directory-list-2.3-medium.txt:FUZZ -u http://10.10.20.3/FUZZ

FUZZ = section to fuzz
-w = wordlist
-u = URL
-fc = filter HTTP status codes
	
 

NOTE:  The word "FUZZ" is used at the section of the URL you want to fuzz. 
	
SAMPLE: http://10.10.20.3/FUZZ | http://10.10.20.3/wdm/FUZZ etc. It is not recursive.
	


DIRB
DESCRIPTION: Tool used perform directory enumeration on a web application.

C1: dirb URL
SAMPLE: dirb http://10.10.20.3
SAMPLE: dirb http://10.10.20.3 -X .php

-X = test file extention [.asp / .html / .asmx etc.]

 

NOTE:  It is recursive.