ffuf
« Back to VersTracker
Description:
Fast web fuzzer written in Go
Type: Formula  |  Tracked Since: Oct 10, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: fuzzing web-security pentesting enumeration go
Install: brew install ffuf
About:
ffuf is a command-line tool written in Go that performs fast web fuzzing by sending HTTP requests with various payloads. It helps identify hidden directories, files, and parameters by systematically testing against a target URL. Its key value proposition is speed and simplicity, leveraging multi-threading for efficient brute-force enumeration.
Key Features:
  • Multi-threaded for high-speed fuzzing
  • Supports various payload types and input formats
  • Flexible HTTP request configuration (headers, methods, proxies)
  • Recursive directory discovery and filtering capabilities
Use Cases:
  • Discovering hidden files and directories on web servers
  • Brute-forcing parameter names in GET/POST requests
  • Fuzzing API endpoints for input validation vulnerabilities
Alternatives:
  • dirb – ffuf is generally faster and more flexible with modern HTTP options.
  • gobuster – Similar performance (Go-based), but ffuf offers more granular HTTP control.
  • wfuzz – Python-based; ffuf is often preferred for raw speed and lower resource usage.
Version History
Detected Version Rev Change Commit
Oct 10, 2025 1:06pm 0 VERSION_BUMP 9e9c38c4
Sep 13, 2025 7:51pm 0 VERSION_BUMP 766be077
« Back to VersTracker  |  Browse Packages  |  About