FFUF 2.0 has been released and is now available, according to the Joo N/A Twitter handle. You can find it on the following GitHub link: https://github.com/ffuf/ffuf.
FFuf (Fuzz Faster U Fool) is a fast web fuzzing tool that can be used for both information gathering and vulnerability testing in the field of cybersecurity. It allows users to perform web fuzzing by sending HTTP/HTTPS requests with user-defined payloads, such as words, numbers, or special characters, to target web applications to identify potential vulnerabilities such as cross-site scripting (XSS), SQL injection, or local file inclusion (LFI).
There is great information on everything you need to know about FFUF in https://codingo.io/tools/ffuf/bounty/2020/09/17/everything-you-need-to-know-about-ffuf.html
Installing ffuf
┌──(kali㉿kali)-[~]
└─$ sudo apt-get install ffuf
[sudo] password for kali:
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
ffuf is already the newest version (1.5.0-0kali1).
ffuf set to manually installed.
The following packages were automatically installed and are no longer required:
libcfitsio9 libpoppler123 libprotobuf23 libzxingcore1 python3-speaklater ruby3.0 ruby3.0-dev ruby3.0-doc
Use 'sudo apt autoremove' to remove them.
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
┌──(kali㉿kali)-[~]
└─$ ffuf -v
Encountered error(s): 2 errors occurred.
* -u flag or -request flag is required
* Either -w or --input-cmd flag is required
Fuzz Faster U Fool - v1.5.0 Kali Exclusive <3
HTTP OPTIONS:
In my next lab exploit, I will do a speed comparisson between FFUF, DIRB and Gobuster using the same wordlist and see which one is faster.