Wednesday, June 3, 2020

Brutality: A Fuzzer For Any GET Entries

Brutalitys' Features
  • Multi-threading on demand.
  • Fuzzing, bruteforcing GET params.
  • Find admin panels.
  • Colored output.
  • Hide results by return code, word numbers.
  • Proxy support.
  • Big wordlist.
Screenshots:

Brutality's Installtion

How to use Brutality?

Examples:
   Use default wordlist with 5 threads (-t 5) and hide 404 messages (–e 404) to fuzz the given URL (http://192.168.1.1/FUZZ):
python brutality.py -u 'http://192.168.1.1/FUZZ' -t 5 -e 404

   Use common_pass.txt wordlist (-f ./wordlist/common_pass.txt), remove response with 6969 length (-r 6969) and proxy at 127.0.0.1:8080 (-p http://127.0.0.1:8080) to fuzz the given URL (http://192.168.1.1/brute.php?username=admin&password=FUZZ&submit=submit#):
python brutality.py -u 'http://192.168.1.1/brute.php?username=admin&password=FUZZ&submit=submit#' -f ./wordlist/common_pass.txt -r 6969 -p http://127.0.0.1:8080

ToDo List:
  • Smooth output.
  • Export file report.
  • Modularization.

Related posts
  1. Pentest Os
  2. Pentest Distro
  3. Pentest Red Team
  4. Pentest Devices
  5. Hacking Box
  6. Pentest Services
  7. Hacking Tools
  8. Pentest Distro
  9. Hacking Linux
  10. Pentest Website
  11. Hackerx
  12. Hacking Forums
  13. Hacking Jailbreak
  14. Hackintosh
  15. Rapid7 Pentest
  16. Hacker Types
  17. Pentest Partners
  18. Pentest Tools Free
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)