# WFuzz

* Official description: "Wfuzz provides a framework to automate web applications security assessments and could help you to secure your web applications by finding and exploiting web application vulnerabilities."
* It is preinstalled on kali. Check it out on github [here](https://github.com/xmendez/wfuzz)
* [Here](https://wfuzz.readthedocs.io/en/latest/) is the documentation

## Subdomain enumeration

* `wfuzz -c -f sub-fighter -w /usr/share/wordlists/SecLists/Discovery/DNS/subdomains-top1million-5000.txt -u 'http://lazyadmin.thm/' -H "HOST: FUZZ.lazyadmin.thm" --hw 968`
  * `hw` will filter the response that contains the number of words specified. Very convenient for notfound pages that give 200 code.
  * `hc 302` will remove all 302 responses from the output

## Directory busting

* `wfuzz -c -w /usr/share/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-small.txt http://target.com/FUZZ`

## API Fuzz

* Check out this article [here](/pentips/web-pentesting/api.md#wfuzz) to see how to use it on API


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://csbygb.gitbook.io/pentips/tools/wfuzz.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.