FFUF in Termux – Installation, Usage & Basic Commands

FFUF (Fuzz Faster U Fool) is a fast web fuzzer used for finding hidden directories, files, subdomains, and parameters. It is widely used in reconnaissance and bug bounty to discover hidden endpoints on websites.

FFUF is extremely fast and powerful when used with good wordlists like SecLists. It is one of the best tools for discovering hidden endpoints.

Installation Commands

Update Termux and install required packages:

pkg update && pkg upgrade && pkg install git golang -y

pkg update && pkg upgrade && pkg install git golang -y

Clone the official GitHub repository:

git clone https://github.com/ffuf/ffuf.git

git clone https://github.com/ffuf/ffuf.git

Move into the directory:

cd ffuf

cd ffuf

Build FFUF:

go build

go build

Run FFUF:

./ffuf -h

./ffuf -h

(Optional) Move to global path:

mv ffuf $PREFIX/bin

mv ffuf $PREFIX/bin

Now you can run from anywhere:

ffuf -h

ffuf -h

Usage Commands

Basic directory fuzzing:

ffuf -u https://example.com/FUZZ -w wordlist.txt

ffuf -u https://example.com/FUZZ -w wordlist.txt

Find directories with status code filtering:

ffuf -u https://example.com/FUZZ -w wordlist.txt -mc 200,301,302

ffuf -u https://example.com/FUZZ -w wordlist.txt -mc 200,301,302

Save results to a file:

ffuf -u https://example.com/FUZZ -w wordlist.txt -o result.json

ffuf -u https://example.com/FUZZ -w wordlist.txt -o result.json

Fuzz subdomains:

ffuf -u https://FUZZ.example.com -w subdomains.txt

ffuf -u https://FUZZ.example.com -w subdomains.txt

Add custom headers:

ffuf -u https://example.com/FUZZ -w wordlist.txt -H "User-Agent: Termux"

ffuf -u https://example.com/FUZZ -w wordlist.txt -H "User-Agent: Termux"

Filter by response size:

ffuf -u https://example.com/FUZZ -w wordlist.txt -fs 1234

ffuf -u https://example.com/FUZZ -w wordlist.txt -fs 1234

Set thread count (speed control):

ffuf -u https://example.com/FUZZ -w wordlist.txt -t 50

ffuf -u https://example.com/FUZZ -w wordlist.txt -t 50