Core Features
Multiple Values
Section titled “Multiple Values”Options that take multiple values are very flexible. Consider the following ways of specifying extensions:
./feroxbuster -u http://127.1 -x pdf -x js,html -x php txt json,docxThe command above adds .pdf, .js, .html, .php, .txt, .json, and .docx to each url
All of the methods above (multiple flags, space separated, comma separated, etc…) are valid and interchangeable. The same goes for urls, headers, status codes, queries, and size filters.
Include Headers
Section titled “Include Headers”./feroxbuster -u http://127.1 -H Accept:application/json "Authorization: Bearer {token}"Note: to include a header containing a comma, use ferox-config.toml
IPv6, non-recursive scan with INFO-level logging enabled
Section titled “IPv6, non-recursive scan with INFO-level logging enabled”./feroxbuster -u http://[::1] --no-recursion -vvRead urls from STDIN; pipe only resulting urls out to another tool
Section titled “Read urls from STDIN; pipe only resulting urls out to another tool”cat targets | ./feroxbuster --stdin --silent -s 200 301 302 --redirects -x js | fff -s 200 -o js-filesProxy traffic through Burp
Section titled “Proxy traffic through Burp”./feroxbuster -u http://127.1 --insecure --proxy http://127.0.0.1:8080Proxy traffic through a SOCKS proxy (including DNS lookups)
Section titled “Proxy traffic through a SOCKS proxy (including DNS lookups)”./feroxbuster -u http://127.1 --proxy socks5h://127.0.0.1:9050Pass auth token via query parameter
Section titled “Pass auth token via query parameter”./feroxbuster -u http://127.1 --query token=0123456789ABCDEF