Skip to content

v2.12.0

Choose a tag to compare

View all tags
@epi052 epi052 released this 01 Sep 11:52
· 3 commits to main since this release
v2.12.0
449e301
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Feroxbuster v2.12.0 Release Summary

🚀 New Features

Response Size Limiting (--response-size-limit)

  • Issue #1260: Added new --response-size-limit flag to limit the size of response bodies read during scanning
  • Helps prevent memory exhaustion when scanning applications with very large responses
  • Default limit set to 4MB, configurable via command line and config file
  • Responses that exceed the limit are marked as truncated but still processed for status codes and headers

Unique Response Filtering (--unique)

  • Issue #1240/635: Added new --unique flag to filter out duplicate responses using SimHash with Hamming distance analysis
  • Helps reduce noise by showing only unique content, especially useful when scanning large applications with similar pages
  • Uses advanced similarity detection to identify duplicate responses even when they're not identical

Auto Content-Type Headers (--data-json and --data-urlencoded)

  • PR #1234: Added new convenience flags for automatically setting Content-Type headers and POST method by @zar3bski
  • --data-json: Automatically sets Content-Type: application/json, configures data payload, and sets method to POST
  • --data-urlencoded: Automatically sets Content-Type: application/x-www-form-urlencoded, URL-encodes the payload, and sets method to POST
  • Both flags support reading data from files using @filename syntax (e.g., --data-json @payload.json)
  • Simplifies common POST request scenarios by eliminating need to manually set headers and methods

Dynamic Scan Limit Management

  • Issue #817: Enhanced scan management menu with ability to view and modify scan limits in real-time
  • Issue #1254: Added capability to increase scan limits through the interactive scan management menu
  • Added "Waiting" status visibility for scans that are queued due to limits

🛠️ Improvements

Shell Completion Updates

  • PR #1229: Fixed Fish shell completion generation in build script by @zer0x64
  • Corrected duplicate Zsh completion generation that was preventing Fish completions from being properly generated

Enhanced SSL Error Messaging

  • Issue #1258: Improved SSL error messages to provide more helpful debugging information
  • Better error context and clearer explanations when SSL/TLS issues occur

Updated Link Discovery

  • Issue #1077: Fixed bug in link extractor functionality related to force recursion handling
  • Updated LinkFinder regex patterns to latest version from upstream project

🔧 Technical Changes

Dependencies

  • Updated various dependencies to their latest versions for security and performance improvements

Code Quality

  • PR #1247: Fixed clippy linting warnings to enable compilation with --deny warnings by @karanabe

Configuration

  • Added unique option to configuration file example
  • Added response_size_limit option to configuration file example
  • Enhanced banner display to show unique filtering and response size limit status when enabled

New Contributors

Full Changelog: v2.11.0...v2.12.0

Contributors

zer0x64, zar3bski, and karanabe
Assets 14
Loading