liamg / Scout
Licence: unlicense
🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
Stars: ✭ 241
Programming Languages
go
31211 projects - #10 most used programming language
Projects that are alternatives of or similar to Scout
Gray hat csharp code
This repository contains full code examples from the book Gray Hat C#
Stars: ✭ 301 (+24.9%)
Mutual labels: pentesting, fuzzer
Ansvif
A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Stars: ✭ 107 (-55.6%)
Mutual labels: pentesting, fuzzer
Aaia
AWS Identity and Access Management Visualizer and Anomaly Finder
Stars: ✭ 218 (-9.54%)
Mutual labels: pentesting
Filesensor
Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具
Stars: ✭ 227 (-5.81%)
Mutual labels: pentesting
Urlhub
URL shortener web application based on the Laravel PHP Framework.
Stars: ✭ 217 (-9.96%)
Mutual labels: url
Oscp Cheat Sheet
This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder
Stars: ✭ 216 (-10.37%)
Mutual labels: pentesting
Connector
Коннектор: удобный HTTP-клиент для 1С:Предприятие 8
Stars: ✭ 240 (-0.41%)
Mutual labels: url
Commix
Automated All-in-One OS Command Injection Exploitation Tool.
Stars: ✭ 3,016 (+1151.45%)
Mutual labels: pentesting
Drozer
The Leading Security Assessment Framework for Android.
Stars: ✭ 2,683 (+1013.28%)
Mutual labels: pentesting
Honggfuzz Rs
Fuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (-7.88%)
Mutual labels: fuzzer
Leakscraper
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
Stars: ✭ 227 (-5.81%)
Mutual labels: pentesting
Iot Pt
A Virtual environment for Pentesting IoT Devices
Stars: ✭ 218 (-9.54%)
Mutual labels: pentesting
Darkspiritz
🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (-9.13%)
Mutual labels: pentesting
Androtickler
Penetration testing and auditing toolkit for Android apps.
Stars: ✭ 225 (-6.64%)
Mutual labels: pentesting
Scout
Scout is a URL fuzzer and spider for discovering undisclosed VHOSTS, files and directories on a web server.
A full word list is included in the binary, meaning maximum portability and minimal configuration. Aim and fire!
Usage
Usage:
scout [command]
Available Commands:
help Help about any command
url Discover URLs on a given web server.
version Display scout version.
vhost Discover VHOSTs on a given web server.
Flags:
-d, --debug Enable debug logging.
-h, --help help for scout
-n, --no-colours Disable coloured output.
-p, --parallelism int Parallel routines to use for sending requests. (default 10)
-k, --skip-ssl-verify Skip SSL certificate verification.
-w, --wordlist string Path to wordlist file. If this is not specified an internal wordlist will be used.
Discover URLs
Flags
-x, --extensions
File extensions to detect. (default php,htm,html,txt
])
-f, --filename
Filename to seek in the directory being searched. Useful when all directories report 404 status.
-H, --header
Extra header to send with requests e.g. -H "Cookie: PHPSESSID=blah"
-c, --status-codes
HTTP status codes which indicate a positive find. (default 200,400,403,500,405,204,401,301,302
)
-m, --method
HTTP method to use.
-s, --spider
Scan page content for links and confirm their existence.
Full example
$ scout url http://192.168.1.1
[+] Target URL http://192.168.1.1
[+] Routines 10
[+] Extensions php,htm,html
[+] Positive Codes 200,302,301,400,403,500,405,204,401,301,302
[302] http://192.168.1.1/css
[302] http://192.168.1.1/js
[302] http://192.168.1.1/language
[302] http://192.168.1.1/style
[302] http://192.168.1.1/help
[401] http://192.168.1.1/index.htm
[302] http://192.168.1.1/image
[200] http://192.168.1.1/log.htm
[302] http://192.168.1.1/script
[401] http://192.168.1.1/top.html
[200] http://192.168.1.1/shares
[200] http://192.168.1.1/shares.php
[200] http://192.168.1.1/shares.htm
[200] http://192.168.1.1/shares.html
[401] http://192.168.1.1/traffic.htm
[401] http://192.168.1.1/reboot.htm
[302] http://192.168.1.1/debug
[401] http://192.168.1.1/debug.htm
[401] http://192.168.1.1/debug.html
[401] http://192.168.1.1/start.htm
Scan complete. 28 results found.
Discover VHOSTs
$ scout vhost https://google.com
[+] Base Domain google.com
[+] Routines 10
[+] IP -
[+] Port -
[+] Using SSL true
account.google.com
accounts.google.com
blog.google.com
code.google.com
dev.google.com
local.google.com
m.google.com
mail.google.com
mobile.google.com
www.google.com
admin.google.com
chat.google.com
Scan complete. 12 results found.
Installation
curl -s "https://raw.githubusercontent.com/liamg/scout/master/scripts/install.sh" | bash
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].