Fuzzing Web Applications | FFUF | Enumerating URLs | Ethical Hacking

This is a tutorial showing the reconnaissance technique known as 'fuzzing' used by hackers. In this video, I fuzz my own website to discover the URL for the admin login for WordPress using a hacking tool called FFUF. Fuzzing can include enumeration of URLs and testing data inputs for web applications. But the technique known as brute forcing also falls under fuzzing. This is where a threat actor would attempt to fuzz password inputs into login forms.

This tutorial does not show anything illegal as I attempt to fuzz URLs on my own website, the Avoiding Big Brother blog. If you intend to use the application FFUF that I use in this video then you need permission from the website's owner or you use your own website or web application. This tutorial also includes some security tips for web masters and internet business owners.

For extra content that is too dangerous for YouTube, you can subscribe to the ABB Patreon for as little as £3 a month and support me. https://www.patreon.com/AvoidingBigBrother

Head over to the ABB donate page to find out more about supporting the channel including funding campaigns: https://avoidbigbro.com/donate/

You can support me on Ko-Fi by giving me a tip: https://ko-fi.com/avoidbigbro

I have dropped the pitch of my voice for the videos and use the alias of Brian Bladen for privacy reasons. I am also paranoid of being hacked!

FREE TRAINING on our website at https://avoidbigbro.com/lp-courses/

My available books/ebooks on Amazon 'Covert Techniques' a guide about privacy and how to avoid surveillance. 'Operation Aurelius' a fictional novel. 'The Bear Roars' my research on Russian state-sponsored APT groups. Author Brian Bladen