GitBook: [master] one page modified

2020-12-01 15:55:38 +00:00 · 2020-12-01 15:55:38 +00:00 · af1cb68098
commit af1cb68098
parent eb84177d9b
1 changed files with 8 additions and 2 deletions
--- a/pentesting-web/web-tool-wfuzz.md
+++ b/pentesting-web/web-tool-wfuzz.md
@ -71,7 +71,7 @@ wfuzz.py -c -z file,users.txt -z file,pass.txt --sc 200 -d "name=FUZZ&password=F
 #### **GET, 2 lists, filter string \(show\), proxy, cookies**
-```text
+```bash
 wfuzz -c -w users.txt -w pass.txt --ss "Welcome " -p 127.0.0.1:8080:HTTP -b "PHPSESSIONID=1234567890abcdef;customcookie=hey" "http://example.com/index.php?username=FUZZ&password=FUZ2Z&action=sign+in"
 ```
@ -83,6 +83,12 @@ wfuzz -c -w users.txt -w pass.txt --ss "Welcome " -p 127.0.0.1:8080:HTTP -b "PHP
 wfuzz -c -w /tmp/tmp/params.txt --hc 404 https://domain.com/api/FUZZ
 ```
 ### Path Parameters BF
 ```bash
 wfuzz -c -w ~/git/Arjun/db/params.txt --hw 11 'http://example.com/path%3BFUZZ=FUZZ'
 ```
 ### Header Authentication
 #### **Basic, 2 lists, filter string \(show\), proxy**
@ -135,7 +141,7 @@ $ wfuzz -z list,GET-HEAD-POST-TRACE-OPTIONS -X FUZZ http://testphp.vulnweb.com/
 ### Directory & Files Bruteforce
-```text
+```bash
 #Filter by whitelisting codes
 wfuzz -c -z file,/usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --sc 200,202,204,301,302,307,403 http://example.com/uploads/FUZZ
 ```