Feroxbuster

FeaturedMIT

🕸 Web Scanning · Rust

Feroxbuster is a tool designed to perform forced browsing (directory/file enumeration) and content discovery. It is built in Rust for maximum performance and includes features like automatic recursion, wildcard filtering, output file support, and resume capability. Unlike other brute-forcers, feroxbuster automatically discovers and recurses into new directories as it finds them, building a complete picture of the target's file structure.

7.7kstars

611forks

40issues

Updated 28d ago

+I use this

View on GitHub Official Website Documentation Download

Installation

cargo

$ cargo install feroxbuster

brew (macOS)

$ brew install feroxbuster

apt (Kali)

$ sudo apt install feroxbuster

Use Cases

Recursive content discovery and directory bruting
Hidden file and backup detection
Web application mapping
Bug bounty reconnaissance

Details

Category: 🕸 Web Scanning
Language: Rust
Repository: epi052/feroxbuster
License: MIT
Platforms: 🐧linux🍎macos🪟windows

Links

GitHub Repository

github.com/epi052/feroxbuster

Official Website

epi052.github.io/feroxbuster-docs/overview

Documentation

epi052.github.io/feroxbuster-docs

Download

github.com/epi052/feroxbuster/releases

Releases

github.com/epi052/feroxbuster/releases

Issues

github.com/epi052/feroxbuster/issues

Used in 1 Workflow

🕸

Web Application Penetration Test

Intermediate · 6 steps · 1-5 days

Community Reviews

Alternatives & Comparisons

Gobuster

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

Compare Feroxbuster vs Gobuster

Burp Suite Community

Java

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

Compare Feroxbuster vs Burp Suite Community

ffuf

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

Compare Feroxbuster vs ffuf

Wfuzz

Python

Web application fuzzer. Brute force parameters, directories, headers, and authentication credentials.

Compare Feroxbuster vs Wfuzz

CRLFuzz

CRLF injection scanner. Fast detection of HTTP response splitting vulnerabilities across multiple URLs.

Compare Feroxbuster vs CRLFuzz

Smuggler

Python

HTTP request smuggling tester. Detects CL.TE, TE.CL, and TE.TE desync vulnerabilities in web servers and proxies.

Compare Feroxbuster vs Smuggler

Feroxbuster

Installation

Use Cases

Tags

Details

Links

Used in 1 Workflow

Web Application Penetration Test

Community Reviews

Alternatives & Comparisons

Gobuster

Burp Suite Community

ffuf

Wfuzz

CRLFuzz

Smuggler

More in Web Scanning

httpx

Nikto

Gobuster

Burp Suite Community

ffuf

Katana