ssrfuzz - Trickest Platform Documentation

Name:ssrfuzz

Category:Vulnerabilities

Publisher:trickest-mhmdiaa

Created:2/5/2022

Container:quay.io/trickest/ssrfuzz:34f0e89

Output Type:

License:Unknown

Source:View Source

Parameters

delay

string

--delayThe time each threads waits between requests in milliseconds (default 100)

--cookieCookie to use for requests

threads

string

--threadsNumber of threads to run ssrfuzz on (default 50)

timeout

string

--timeoutThe amount of time needed to close a connection that could be hung (default 10)

verbose

string

--verboseVerbose output

crlf-path

string

--crlf-pathAdd CRLF payloads to all available paths (ie: site.com/%0Atest.php)

skip-crlf

boolean

--skip-crlfSkip CRLF fuzzing

http-method

string

--http-methodHTTP Method - GET or POST (default GET)

skip-scheme

boolean

--skip-schemeSkip scheme fuzzing

skip-network

boolean

--skip-networkSkip network fuzzing

slack-webhook

string

--slack-webhookSlack webhook to send findings to a channel

target-domains

file

required

--domainsLocation of domains with PARAMETERS to scan

custom-user-agent

string

--user-agentUser agent for requests (default Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36)

Library

Parameters