shortnameguesser
A hacky tool to guess the rest of the IIS shortnames. This plugs directly into the output of sns.
The first argument indicates the number of guesses to try to make i.e python3 shortnameguesser.py 50.
Quick and dirty one-liner:
sns -u <target URL> --nocolor --silent | python3 shortnameguesser.py 100 > guesses.txt && ffuf -u "<target URL>/FUZZ" -w guesses.txt
Requirements:
- Configure the
OPENAI_API_KEYenvironment variable with your API key.