Wfuzz Download – Web Application Password Cracker in Kali Linux
Brute-Forcing is the technique to discover the hidden directories and files on the target server. We can even brute-force usernames and passwords. All this process is done through an automated tool. Quickly Request-Response methodology is executed on the domain. Wfuzz tool is an automated tool used to perform all types of brute-forcing on the target domain. Wfuzz tool is developed in the Python Language. Wfuzz tool is available on the GitHub platform, it’s free and open-source to use. We can specify our mode of request and change the User-Agent values to stay anonymous on the target domain.
Note: Make Sure You have Python Installed on your System, as this is a python-based tool. Click to check the Installation process: Python Installation Steps on Linux
Installation of Wfuzz Tool on Kali Linux OS
Step 1: Use the following command to install the tool in your Kali Linux operating system.
git clone https://github.com/xmendez/wfuzz.git
Step 2: Now use the following command to move into the directory of the tool. You have to move in the directory in order to run the tool.
Step 3: You are in the directory of the Wfuzz. Now you have to install a dependency of the Wfuzz using the following command.
sudo pip3 install -r requirements.txt
Step 4: All the dependencies have been installed in your Kali Linux operating system. Now use the following command to run the tool and check the help section.
Working with Wfuzz Tool on Kali Linux OS
Example 1: Simple Directory Scan on geeksforgeeks.org
wfuzz -c -z file,wordlist/general/big.txt –hc 404 http://geeksforgeeks.org/FUZZ
Example 2: Printing Wfuzz version details
Example 3: Verbose Information/ More Detailed Output
wfuzz -v -z file,wordlist/general/big.txt –hc 404,301 http://geeksforgeeks.org/FUZZ