Twitter | Search | |
Joo, N/A
Hacks for beer. FOSS, infosec and privacy. Chaotic good.
1,594
Tweets
612
Following
2,489
Followers
Tweets
Joo, N/A retweeted
Paul Seekamp 7h
Turn a 2 hour "wpscan -e ap" scan into 10 min curl |jq -r '.plugins' | grep ": {" | cut -d "\"" -f2 |while read word; do echo /wp-content/plugins/$word/readme.txt; done > wordpress_dict.txt ffuf -w wordpress_dict.txt -u /FUZZ -t 400 -mr 'Contributors'
Reply Retweet Like
Joo, N/A retweeted
Laura Kankaala Oct 15
We are working towards making the Internet a safer place. If you’re interested, follow us and go check out .
Reply Retweet Like
Joo, N/A retweeted
Joakim Tauren Oct 15
So many awesome things mentioned on this one, close to my heart is obviously FFUF and thus -> and ! Go check out video on FFUF over here:
Reply Retweet Like
Joo, N/A Oct 14
Replying to @khuhtanen
Taisi olla jo pyydetty / proaktiivisesti toimitettu jo pari päivää sitten: Tämän enempää en aiheeseen koske ;)
Reply Retweet Like
Joo, N/A Oct 14
Replying to @pry0cc
That's upcoming feature. A database solution you can configure in your ~/.ffufrc I talked about it a bit here:
Reply Retweet Like
Joo, N/A retweeted
Dist Oct 14
Hi! Do you have a life? Do you like to spend time with your family and hobbies? Like to sleep well? Well! Here’s an excellent chance to throw all that away and do what you must. Then do all that again, but just a bit harder. Because you can. I know you can.
Reply Retweet Like
Joo, N/A Oct 14
It just becomes nonexistenter
Reply Retweet Like
Joo, N/A Oct 14
Replying to @iiuusit
I'll make sure to send you cat gifs to make your dream of Remote Cat Examination become true.
Reply Retweet Like
Joo, N/A Oct 11
Replying to @nightshiftc @epi052
Thanks!
Reply Retweet Like
Joo, N/A Oct 11
Replying to @nightshiftc @epi052
That’s cool! Did you run with the defaults or normalized setup (threads etc) also was the target http, https / http/2? I would love to get to know about the strenghts of Rust in this particular scenario.
Reply Retweet Like
Joo, N/A retweeted
Miek Gieben Oct 10
Coincidentally this is also how we develop DNS software.
Reply Retweet Like
Joo, N/A Oct 9
Replying to @CGolang
Ffuf doesn’t do any or the magic for you, so you’ll have to set the headers. The probable causes & solutions: - You are POSTing a form: set the correct Content-Type - WAF is blocking ffuf UA: set a fake User-Agent header
Reply Retweet Like
Joo, N/A Oct 6
Replying to @FindomainApp @0xtavian
LMK if you have any questions. The latest master branch makes it feasible to use ffuf as a library too. The documentation / examples are obviously not there yet though.
Reply Retweet Like
Joo, N/A Oct 5
Replying to @epi052
It's all FOSS, the community and being able to use tools that fit your personal workflow the best. We all benefit from having multiple choices! Good job with feroxbuster!
Reply Retweet Like
Joo, N/A Oct 5
New alternative to ffuf released, with a really fresh take on the UI, I especially like the implementation of the progress bar.
Reply Retweet Like
Joo, N/A Oct 3
Replying to @Random_Robbie
Ffuf doesn’t have the functionality to generate sequences itself. When dealing with a single value, I usually pipe ”seq 1 100” to ffuf (-w -). Handling multiple is definitely possible, but you’ll need to use files for temporary storage of the sequences and use those as wordlists
Reply Retweet Like
Joo, N/A Oct 3
Replying to @antti_antinoja
Yeah! Theres libraries portion at
Reply Retweet Like
Joo, N/A Oct 1
I was interviewed for Josh's awesome podcast! I'm humbled to have been chosen to speak amidst of giants here (just look at the previous guests and topics!). Be sure to listen the preceeding episodes as well, great people, great content. Thanks!
Reply Retweet Like
Joo, N/A Oct 1
Replying to @p4rsec_ @IanColdwater
Yeah. That’s the only feasible sustainable solution, I agree.
Reply Retweet Like
Joo, N/A Oct 1
Replying to @IanColdwater
Hacktoberfest also has a system in place to identify spam - effectively disqualifying the bad actors. This works simply by labeling the PR as [invalid] or [spam]. I hope maintainers will utilize these to discourage the PRDoS
Reply Retweet Like