search

epi052 / feroxbuster

A fast, simple, recursive content discovery tool written in Rust.
https://epi052.github.io/feroxbuster/
MIT License
5.85k stars 496 forks source link

[FEATURE REQUEST] --insecure flag by default #1003

Closed hvprvtr closed 7 months ago

hvprvtr commented 11 months ago

Please, make --insecure falg enabled by default. Every time i adding more one param in template cmd for hosts with self-signed cert. But in every case SSL trouble is not important and not worthy of attention.

As i see, ignoring this certs it is de-facto standart in same tools like dirb, ffuf or other. Very unusual specify this param after fail with standart brute cmd.

epi052 commented 11 months ago

thanks for taking the time to put in this request! i'm not a fan of making --insecure the default at this point. I understand other tools may behave that way, but ferox hasn't and to change at this point would almost certainly dork with other users assumptions.

As a solution for you, I'd recommend either a user or system level ferox-config.toml with the following contents. 

insecure = true

Then that setting is always on for you.

stale[bot] commented 9 months ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.