Skip to content

v2.4.0

Latest
Latest
Compare
Choose a tag to compare
@0xKayala 0xKayala released this 07 Jan 08:35
· 8 commits to main since this release
v2.4.0
a740f76
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

What's Changed in NucleiFuzzer (Version 2.4.0)

New Features:

Enhanced Help Menu:

  • Introduced a comprehensive help menu accessible via the -h or --help flag.
  • Provides clear guidance on script usage, available options, and functionalities.

Output Folder Specification:

  • Added the ability to specify a custom output folder for scan results using the -o or --output flag.
  • Enables better organization and management of scan outputs.

Prerequisite Checks:

  • Automatically checks for required tools and installs missing ones:
    • nuclei, httpx, uro, katana, waybackurls, gauplus, and hakrawler.
  • Ensures a seamless setup process for users.

Repository Cloning:

  • Automatically clones necessary repositories (ParamSpider and nuclei-templates) if not already available.
  • Simplifies setup for first-time users.

Error Handling and Input Validation:

  • Validates input domains and URLs to prevent errors during the scanning process.
  • Handles invalid or missing inputs gracefully with clear error messages.

Excluded Extensions:

  • Predefined exclusions for file extensions like images, scripts, and fonts, ensuring irrelevant resources are skipped.

Enhancements:

Robust URL Collection:

  • Integrates tools like ParamSpider, Waybackurls, Gauplus, Hakrawler, and Katana for comprehensive URL enumeration.
  • Combines outputs and eliminates duplicates using uro for efficient processing.

Improved URL Validation:

  • Introduced a validation step to filter out invalid URLs before initiating scans.
  • Guarantees only actionable targets are processed.

Advanced Nuclei Integration:

  • Runs nuclei templates on validated URLs, leveraging httpx to filter targets with specific HTTP status codes (e.g., 200, 204, 301).
  • Outputs results to a designated file for easy reference.

User-Friendly Messaging:

  • Added color-coded (red and green) status messages to improve readability and provide clear updates.
  • Concise and informative messages ensure users are well-informed during the process.

Performance Optimizations:

  • Enhanced script efficiency with sorting and deduplication of URLs.
  • Streamlined processes to reduce runtime and resource usage.

Summary:

The NucleiFuzzer v2.4.0 introduces a highly user-friendly, robust, and efficient experience, providing comprehensive web vulnerability scanning with minimal manual intervention. It’s designed to simplify setup, enhance performance, and improve usability, making it an essential tool for cybersecurity professionals.

Assets 2
Loading