hackxpert-brute is a lightweight HTTP brute-force tool designed for bug bounty and CTF labs. It supports login brute-forcing, directory fuzzing, parameter fuzzing, and custom header injection.
git clone https://github.com/hackxpert/hackxpert-brute cd hackxpert-brute pip install -r requirements.txt python hackxpert-brute.py --help
# Login brute-force (POST)
python hackxpert-brute.py \
-u http://localhost/loginBypass/ \
-X POST \
-d "username=admin&password=FUZZ" \
-w /usr/share/wordlists/rockyou.txt \
--match-string "Welcome"
# Directory fuzzing (GET)
python hackxpert-brute.py \
-u http://localhost/FUZZ \
-w /usr/share/wordlists/dirb/common.txt \
--status-filter 200,301,302
# OTP brute-force (4-digit)
python hackxpert-brute.py \
-u http://localhost/OTP/lab1_otp_bruteforce.php \
-X POST \
-d "otp=FUZZ" \
-w <(seq -w 0000 9999) \
--match-string "flag{"
# Rotate X-Forwarded-For with each request
python hackxpert-brute.py \
-u http://localhost/RateLimitBypass/lab1.php \
-X POST \
-d "pin=FUZZ" \
-w <(seq -w 0000 9999) \
-H "X-Forwarded-For: FUZZ2" \
-w2 <(shuf -i 1-254 -n 9999 | awk '{print "10.0.0."$1}') \
--match-string "flag{"