Skip to content

2.7.0
Compare
Choose a tag to compare
@epi052 epi052 released this 15 Apr 11:11
· 385 commits to main since this release
2.7.0
ccb10c1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

What's Changed

For a more in-depth explanation of how status code filtering has changed, please see the docs. Here are the cliff notes:

  • --filter-status and --status-codes are now mutually exclusive options
  • --status-codes works the same way it always has: by providing an allow-list for status codes. Any status code not included in --status-codes will be filtered out
  • If a value is given to --filter-status, that status code will be filtered out, while all other status codes are allowed to proceed

Additionally, there is a new flag, --force-recursion. This flag tells feroxbuster to ignore its typical recursion logic in favor of recursing into any ‘found’ asset. A ‘found’ asset is an endpoint that was not filtered out by other scan settings (i.e. –filter-status or similar). More info available here.

Finally, the default path to the wordlist on windows has been updated to look in the current directory: .\SecLists\Discovery\Web-Content\raft-medium-directories.txt

🎉 Special thanks to @0xdf223 and @ThisLimn0 🎉

Full Changelog: v2.6.4...2.7.0

Contributors

epi052, ThisLimn0, and 0xdf223
Assets 11
Loading