Add subwords capability to ffuf_shortnames

[liquidsec]

Also adds ignore_case option to ffuf (useful for IIS where case doesn't matter)

Subwords uses python nltk (natural language toolkit) to try and find smaller words at the beginning of shortnames. If it does, it sends the remainder off to the predictor. This works well because web developers have a habit of making lots of "VerbAction" type two-word file names.

[codecov]

Codecov Report

Attention: Patch coverage is 92.22222% with 7 lines in your changes missing coverage. Please review.

Project coverage is 93%. Comparing base (703a313) to head (b756df2).
Report is 25 commits behind head on dev.

Files with missing lines	Patch %	Lines
bbot/core/helpers/web/web.py	70%	4 Missing ⚠️
bbot/modules/deadly/ffuf.py	75%	2 Missing ⚠️
bbot/modules/ffuf_shortnames.py	98%	1 Missing ⚠️

Additional details and impacted files

@@          Coverage Diff          @@
##             dev   #2237   +/-   ##
=====================================
- Coverage     93%     93%   -0%     
=====================================
  Files        378     378           
  Lines      29363   29443   +80     
=====================================
+ Hits       27155   27227   +72     
- Misses      2208    2216    +8     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[TheTechromancer]

Is there an advantage to using nltk over the builtin subword helper?

[liquidsec]

mainly just the size of the wordlist, which is massive, and should be well maintained being part of nltk

Also the functionality of that helper doesn't quite match the use, that finds all the subwords (as a list), whereas this is just checking for prefixes

[TheTechromancer]

self.helpers.wordlist("https://raw.githubusercontent.com/nltk/nltk_data/gh-pages/packages/corpora/words.zip")