gau
gau | goo.gl_abuse | |
---|---|---|
6 | 2 | |
3,557 | 0 | |
- | - | |
6.0 | 0.0 | |
21 days ago | about 6 years ago | |
Go | Python | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
gau
-
Pentesting Tools I Use Everyday
Learn more about gau here: https://github.com/lc/gau
- Please Help
- 2 open source tools to find subdomains (ft. HakLuke)
-
What should I look for when checking wayback urls when performing recon and analysis?
I see people use tools like gau and waybackurls when doing recon and analysis before a web app pentest, I am a complete beginner and most tutorials just explain how to install these tools but not why we want to use them or where we want to get using them.
-
How to search URLs exposed by Shortener services
Great :) Would be a great addition to tools like gau or waybackurls for people with an API key!
- Google pics and videos of hot ebony wife
goo.gl_abuse
-
How to search URLs exposed by Shortener services
wrote a script a while ago that abused goo.gl, https://github.com/d0t1q/goo.gl_abuse/blob/master/goo.py
-
Urlhunter - a recon tool that allows searching on URLs that are exposed via shortener services such as bit.ly and goo.gl
I made a goo.gl link scraper a while ago, its not pretty but it works - https://github.com/d0t1q/goo.gl_abuse
What are some alternatives?
waybackurls - Fetch all the URLs that the Wayback Machine knows about for a domain
urlhunter - a recon tool that allows searching on URLs that are exposed via shortener services
hakrawler - Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
xurlfind3r - A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
john - John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
dirsearch - Web path scanner
ffuf - Fast web fuzzer written in Go
Metasploit - Metasploit Framework