Wfuzz Download – Web Application Password Cracker in Kali Linux

Brute-Forcing is the technique to discover the hidden directories and files on the target server. We can even brute-force usernames and passwords. All this process is done through an automated tool. Quickly Request-Response methodology is executed on the domain. Wfuzz tool is an automated tool used to perform all types of brute-forcing on the target domain. Wfuzz tool is developed in the Python Language. Wfuzz tool is available on the GitHub platform, it’s free and open-source to use. We can specify our mode of request and change the User-Agent values to stay anonymous on the target domain.

Note: Make Sure You have Python Installed on your System, as this is a python-based tool. Click to check the Installation process: Python Installation Steps on Linux

Installation of Wfuzz Tool on Kali Linux OS

Step 1: Use the following command to install the tool in your Kali Linux operating system.

git clone https://github.com/xmendez/wfuzz.git

Step 2: Now use the following command to move into the directory of the tool. You have to move in the directory in order to run the tool.

cd wfuzz

Step 3: You are in the directory of the Wfuzz. Now you have to install a dependency of the Wfuzz using the following command.

sudo pip3 install -r requirements.txt

Step 4: All the dependencies have been installed in your Kali Linux operating system. Now use the following command to run the tool and check the help section.

wfuzz -h

Working with Wfuzz Tool on Kali Linux OS

Example 1: Simple Directory Scan on geeksforgeeks.org

wfuzz -c -z file,wordlist/general/big.txt –hc 404 http://geeksforgeeks.org/FUZZ

Example 2: Printing Wfuzz version details

wfuzz --version

Example 3:  Verbose Information/ More Detailed Output

 wfuzz -v -z file,wordlist/general/big.txt –hc 404,301 http://geeksforgeeks.org/FUZZ