Hi everyone, I started this project back in May of 2022 so I could learn golang. Later I started using it in CTFs as a webfuzzer. It’s about as fast as all the other webfuzzers out there but I added a few extra features. Aside from all the standard webfuzzing stuff I added a few cool tools:
- DOS mode for stress testing
- Web requests from a file (usually from Burpsuite)
- Transforms (allows you to mutate your wordlist on the fly, currently supports urlencode and base64)
Here’s the link to the Github repo, contributions are welcome!
GET /tcp/@0@ HTTP/1.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:101.0) Gecko/20100101 Firefox/101.0
Accept-Encoding: gzip, deflate
Cookie: csrftoken=4S8b2nFcnCBSOgaDpilZzqqFOoX1hmOIhdEdEPDp7XXpt1KPiqWJ09OQ4nHhROlC; _sp_id.1fff=baac8734-646a-457f-a9e5-ca39f87a42af.1653941292.3.1654620108.1654042966.34733fa1-03af-48d1-a687-a7df3a82aaf0
request is not good
Hi, @KingOfZero I can’t seem to reproduce the issue.
Could you please provide the exact command that you’re using and the error output?
Also it would probably be best to sort out issues here: Issues · wadeking98/gohammer · GitHub