I am working on directory enumeration for a website that has a /#/ in the url which is causing some problems for both gobuster and wfuzz. I have found the login page for the site at http://example.com/#/login (name of site changed)
When I try this with gobuster, I am getting the error
gobuster dir -v -u http://example.com/#/:80 -w ./wordlists/common.txt " Error: the server returns a status code that matches the provided options for non existing urls" When I try with wfuzz, I am getting the error
wfuzz -c -w ./wordlists/common.txt -u http://example.com/#/FUZZ UserWarning:Fatal exception: FUZZ words and number of payloads do not match! I have tried it with the encoding of %23 to replace the # but to no avail. I have also tried it without the /#/ in the URL but that leads me to all 404 errors.
Does anyone have any suggestions for methods to include the /#/ in my enumeration efforts?
Thank you in advance!
[link] [comments]
from hacking: security in practice https://ift.tt/mszn0Ui
Comments
Post a Comment