Projects STRLCPY XML-RPC-Check Files
Enable build support by adding .buildspec.yml Loading last commit info...

XML-RPC Vulnerability Checker and Directory Fuzzer

GitHub license

This repository contains a versatile Bash script for assessing web application security. It offers two primary functionalities: XML-RPC vulnerability checking and directory fuzzing using the powerful "ffuf" tool.

Table of Contents


XML-RPC Vulnerability Check

  • Quickly assess whether a given URL is vulnerable to XML-RPC exploits.
  • Detects if the target's XML-RPC server accepts POST requests only.
  • Provides clear and informative results for each operation.

Directory Fuzzing with ffuf

  • Utilizes the powerful "ffuf" tool to perform directory and page fuzzing.
  • Discover hidden directories, files, and endpoints on web servers.
  • Ideal for reconnaissance and identifying potential attack vectors.
  • Supports customizable wordlists for directory fuzzing.

Getting Started


  • A Linux-based operating system (tested on Ubuntu).
  • The "curl" and "ffuf" tools installed on your system.
  • Basic knowledge of web security and directory fuzzing.


  1. Clone this repository to your local machine:

    git clone
    cd XML-RPC-Check
    chmod +x
    ### Wordlists
    - [seclists] (
Please wait...
Page is in error, reload to recover