reddit hackernews mail facebook facebook linkedin
ffufPostprocessing

ffufPostprocessing

Golang tool which helps dropping the irrelevant entries from your ffuf result file.

Unfortunately - despite its "-ac" flag, ffuf tends to produce a lot of irrelevant entries. This is why this tool has been created a post-processing tool to filter out those entries. Additionally, a lot of relevant entries removed when "-ac" was used - especially when ffuf encounters json or xml files - "-ac" might drop them entirely. This tool has to be run after ffuf has finished.

This tool will initially analyse all bodies and enrich the initial results json file with the following data points:
- count of all headers
- domain of redirect if applicable
- amount of parameters in redirect if applicable
- length and words of page title (if existent)
- count of detected css files
- count of detected js files
- count of tags in html/xml/json (calculation is wild)

Afterwards it will scan the entire new results file and keep only those entries which are unique based on known metadata types. If it turns out that one of those values is always different (e.g. the title of pages can vary very much) - this metadata type will be skipped for the uniqueness check.

In general this tool will always keep a small amount of entries which are not unique. For example, if the results json file contains 300x http status 403 (with words, length, ... identical) and 2 unique http status 200 responses, it won't drop all 300 http status 403 entries. It will keep X of them in the data set.