wfuzz Size Exploration - Ariekei [HackTheBox]
I was using wfuzz to scan for virtual hosts on Ariekei from HackTheBox, and one of the subdomains that I knew existed wasn't showing up. I'll do some quick troubleshooting, and learn a valuable lesson about how wfuzz (and other tools) measure size. I'll run a short wordlist through Burp Proxy to look at what's going on, and come to the conclusion that wfuzz (and other tools) doesn't look at HTTP headers when calculating size.
[00:00] Introduction
[00:30] Original wfuzz command
[01:20] Using test list to troubleshoot beehive
[01:40] Using Burp to look at requests
[03:15] Conclusion - wfuzz doesn't look at headers when calculating length
Смотрите видео wfuzz Size Exploration - Ariekei [HackTheBox] онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь 0xdf 20 Апрель 2022, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 692 раз и оно понравилось 52 людям.