CRLFuzz

CRLFuzz Agent Setup for Scan CRLF vulnerability

CRLFuzz Command
Using {{domain}} ReconNess replace {{domain}} for the subdomain.
crlfuzz -u https://{{domain}} -s
​Click here to know more about CRLFuzz ​
This Agent run in each subdomain. 
CRLFuzz Script
We save the vulnerability info inside the Subdomain's Notes
return new ReconNess.Core.Models.ScriptOutput { Note = lineInput };
Check the Readme on GitHub to know more about the Script.
CRLFuzz Dockerfile Entry
# -------- Agents dependencies -------- 
​
# To allow run CRLFuzz inside the docker
​
RUN apt-get update && apt-get install -y git wget
RUN wget https://dl.google.com/go/go1.14.6.linux-amd64.tar.gz
RUN tar -C /usr/local -xzf go1.14.6.linux-amd64.tar.gz 
RUN /usr/local/go/bin/go get -v github.com/dwisiswant0/crlfuzz/cmd/crlfuzz
​
# -------- End Agents dependencies --------
CRLFuzz Command for Docker
/root/go/bin/crlfuzz -u https://{{domain}} -s

AGENTS SCAN - Previous

Nuclei

Next - Agents Screenshot

Gowitness

Last modified 1yr ago