From da59c5b3adf62c85f6bfb71cf76f76bf32c3b555 Mon Sep 17 00:00:00 2001 From: Tib3rius <48113936+Tib3rius@users.noreply.github.com> Date: Mon, 12 Apr 2021 16:26:11 -0400 Subject: [PATCH] Update service-scans-default.toml Updated ffuf syntax to redirect to txt file. --- src/autorecon/config/service-scans-default.toml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/autorecon/config/service-scans-default.toml b/src/autorecon/config/service-scans-default.toml index 40d4e6c..f51fced 100644 --- a/src/autorecon/config/service-scans-default.toml +++ b/src/autorecon/config/service-scans-default.toml @@ -127,7 +127,7 @@ ignore-service-names = [ [[http.scan]] name = 'ffuf' - command = 'ffuf -u {scheme}://{address}:{port}/FUZZ -t 10 -w /usr/share/seclists/Discovery/Web-Content/common.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v -of csv -o {scandir}/{protocol}_{port}_{scheme}_ffuf.txt' + command = 'ffuf -u {scheme}://{address}:{port}/FUZZ -t 10 -w /usr/share/seclists/Discovery/Web-Content/common.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v | tee {scandir}/{protocol}_{port}_{scheme}_ffuf.txt' [[http.manual]] description = '(nikto) old but generally reliable web server enumeration tool' @@ -138,8 +138,8 @@ ignore-service-names = [ [[http.manual]] description = '(ffuf) Multi-threaded recursive directory/file enumeration for web servers using various wordlists:' commands = [ - 'ffuf -u {scheme}://{address}:{port}/FUZZ -w /usr/share/seclists/Discovery/Web-Content/big.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v -of csv -o {scandir}/{protocol}_{port}_{scheme}_ffuf_big.txt', - 'ffuf -u {scheme}://{address}:{port}/FUZZ -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v -of csv -o {scandir}/{protocol}_{port}_{scheme}_ffuf_dirbuster.txt' + 'ffuf -u {scheme}://{address}:{port}/FUZZ -w /usr/share/seclists/Discovery/Web-Content/big.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v | tee {scandir}/{protocol}_{port}_{scheme}_ffuf_big.txt', + 'ffuf -u {scheme}://{address}:{port}/FUZZ -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -e ".txt,.html,.php,.asp,.aspx,.jsp" -v | tee {scandir}/{protocol}_{port}_{scheme}_ffuf_dirbuster.txt' ] [[http.manual]]