basic auth endpoint brute forcer

go run main.go -u userList -p passwordList -url https://site.com/thing -m POST -s 200 -z 100

-m request method (default "POST")

-p password list (default "./samplePasswords")

-s success on status code (default 200)

-u user list (default "./sampleUsers")

-url target url (default "http://localhost:8080/test")

-z req/s... ish (default 10)

• add feedback, filter results based on 200/301 or maybe custom responses
• add ability to GET vs. POST
• add some ability to slow this down? currently it's gonna get you ratelimited quickly
  • probably should throw all potential permutations into a list and create requests in batches
  • it's working
• add ability to add cookies in case these are needed to hit endpoint
• add ability to "go get" - fix import names for something non-local
• probably add a 'kill if success' flag
• add a "what is success" flag - could be a 301/302 means a successful login