outzhu
commented
1 year ago gobuster has a command for fuzzing.
Available Commands:
dir Uses directory/file enumeration mode
dns Uses DNS subdomain enumeration mode
fuzz Uses fuzzing mode
help Help about any command
s3 Uses aws bucket enumeration mode
version shows the current version
vhost Uses VHOST enumeration mode (you most probably want to use the IP adress as the URL parameter
Ffuf is as fuzzing tool written in GoLang. It is very fast and outputs in a myriad of formats. Has a very robust matching system and can also be used for due care testing of any request parameters you decide.
https://github.com/ffuf/ffuf