# Web Fuzzing

## FUZZ

### Helpful Note 

* Filter size -fs
* Filter words -fw
* Threads -t 10

### Directory Fuzzing

> **ffuf -w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/Web-Content/directory-\* -u <http://example.com/FUZZ>**

### Extension Fuzzing

> **ffuf -w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/Web-Content/web-extensions.txt -u <http://example.com/indexFUZZ>**

### Page Fuzzing

> **ffuf -w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/Web-Content/directory-list-2.3-small.txt -u <http://example.com/blog/FUZZ.add\\_here\\_perticular\\_extension>**
>
> **For Example**
>
> * Here i use .php extension
>
> ffuf -w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/Web-Content/directory-list-2.3-small.txt -u <http://example.com/FUZZ.**php>\*\*

### Recursive Fuzzing

> <br>

### Sub-domain Fuzzing

> ffuf -u <http://FUZZ.example.eu> -w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/DNS/subdomains-top1million-5000.txt

### Vhost Fuzzing

**`VHosts may or may not have public DNS records.`**

> ffuf -u <http://example.eu> -H 'Host: FUZZ.example.com'-w Documents/Tools\_and\_Helper/All\ Payload/Wordlist/SecLists-master/Discovery/DNS/subdomains-top1million-5000.txt