Closed danzee1 closed 3 years ago
Issue-Label Bot is automatically applying the label feature_request
to this issue, with a confidence of 0.64. Please mark this comment with :thumbsup: or :thumbsdown: to give our bot feedback!
Links: app homepage, dashboard and code for this bot.
Yay ffuf is coming. Duplicate of #146
Hi @yogeshojha
Common mistake which I've noticed in almost all Recon tools is that they are feeding dirsearch/ffuf with the same directory bruteforce file to each type of subdomain. Currently rengine is using dirsearch which uses its default dict file for bruteforcing.
If httpx or wappalyzer is giving information that subdomain is wordpress. Then that wordpress subdomain should be tested against this directory bruteforcing list
Similarly one can do it for each type of systems like SAP etc. (Should be done for as much type of system Dirs we have in SecLists by danielmiessler )
Regards,