Hi guys I’m having trouble with wfuzz.
I’m trying to bruteforce this vulnerable web application http://demo.testfire.net and yet no password and username is discovered it scans my custom payload though and yet nothing else is discovered take a look
This is the command i used:
wfuzz -c -z file, -z file, -d “uid=FUZZ&passw=FUZ2Z” --hc 200 http://demo.testfire.net/login.jsp
Any body wants to tell me what is the problem??