A web application attack surface mapping tool. It takes in a list of urls then performs numerous probes

sigurlscann3r

release maintenance open issues closed issues license twitter

A web application attack surface mapping tool. It takes in a list of urls then performs numerous probes

Resources

Features

  • Categorize URLs

    URLs' categories 
     - endpoint
 - js {js}
 - style {css}
 - data {json|xml|csv}
 - archive {zip|tar|tar.gz}
 - doc {pdf|xlsx|doc|docx|txt}
 - media {jpg|jpeg|png|ico|svg|gif|webp|mp3|mp4|woff|woff2|ttf|eot|tif|tiff}

  • Probe HTTP requests for status_code, content_type, e.t.c

  • For every URL of category endpoint with a query:

Installation

From Binary

You can download the pre-built binary for your platform from this repository's releases page, extract, then move it to your $PATHand you're ready to go.

From Source

sigurlscann3r requires go1.14+ to install successfully. Run the following command to get the repo

GO111MODULE=on go get -v -u github.com/signedsecurity/sigurlscann3r/cmd/sigurlscann3r

From Github

git clone https://github.com/signedsecurity/sigurlscann3r.git && \
cd sigurlscann3r/cmd/sigurlscann3r/ && \
go build . && \
mv sigurlscann3r /usr/local/bin/ && \
sigurlscann3r -h

Usage

To display help message for sigurlscann3r use the -h flag:

sigurlscann3r -h
     _                  _                           _____
 ___(_) __ _ _   _ _ __| |___  ___ __ _ _ __  _ __ |___ / _ __
/ __| |/ _` | | | | '__| / __|/ __/ _` | '_ \| '_ \  |_ \| '__|
\__ \ | (_| | |_| | |  | \__ \ (_| (_| | | | | | | |___) | |
|___/_|\__, |\__,_|_|  |_|___/\___\__,_|_| |_|_| |_|____/|_| v1.0.0
       |___/

USAGE:
  sigurlscann3r [OPTIONS]

GENERAL OPTIONS:
  -iL                       input urls list (use `-iL -` to read from stdin)
  -threads                  number concurrent threads (default: 20)
  -update-params            update params file

HTTP OPTIONS:
  -delay                    delay between requests (default: 100ms)
  -follow-redirects         follow redirects (default: false)
  -follow-host-redirects    follow internal redirects i.e, same host redirects (default: false)
  -http-proxy               HTTP Proxy URL
  -timeout                  HTTP request timeout (default: 10s)
  -UA                       HTTP user agent

OUTPUT OPTIONS:
  -nC                       no color mode
  -oJ                       JSON output file (default: ./sigurlscann3r.json)
  -v                        verbose mode

Contribution

Issues and Pull Requests are welcome!

Owner
Signed Security
Signed Security
https://github.com/signedsecurity/sigurlscann3r https://github.com/signedsecurity/sigurlscann3r
Similar Resources

Retro-Floppy UI is a web based application for managing & using a GoTek floppy emulator running the Flash Floppy firmware.

Retro-Floppy UI is a web based application for managing & using a GoTek floppy emulator running the Flash Floppy firmware.

A web user interface for a GoTek running flashfloppy utilising a Raspberry PI 0W as the storage. This allows for remote uploading of files & selecting which disk image is loaded on a retro computer like the BBC Micro or Amiga A1200

Dec 10, 2022

A simple web application written in Golang which listens on port 8080

GoWebApp It's a simple web application written in Golang which listens on port 8080 Building It can be build using the command go build -o metricsweba

Oct 21, 2021

A web application example to work with a customer object

Wallester Task This repository contains a web application example to work with a customer object. Build in GO version 1.17.1 Live running app example

Oct 25, 2021

๐Ÿ––๐Ÿป A self-hosted Quora like web application written in Go

๐Ÿ––๐Ÿป A self-hosted Quora like web application written in Go

Guora ๐Ÿ––๐Ÿป A self-hosted Quora like web application written in Go ๅŸบไบŽ Golang ็ฑปไผผ็ŸฅไนŽ็š„็งๆœ‰้ƒจ็ฝฒ้—ฎ็ญ”ๅบ”็”จ ๅŒ…ๅซ้—ฎ็ญ”ใ€่ฏ„่ฎบใ€็‚น่ตžใ€็ฎก็†ๅŽๅฐ็ญ‰ๅŠŸ่ƒฝ Quick Start (Docker Deploy) $ docker-comp

Dec 27, 2022

Using golang framework (Gin) to create a web-application

News feeder Using golang framework (Gin) to create a web-application. This simpl

Aug 22, 2022

Go-service-gin - Simple Web api application developed in Golang and Gin

Simple Web api application developed in Golang and Gin Initial Tutorial URL http

Jan 4, 2022

Go kickstart is a simple repository that I'm managing to a have a fast setup for Go web application

Go kickstart is a simple repository that I'm managing to a have a fast setup for Go web application with my most common use cases using practices that I found useful and easy to maintain.

Jan 30, 2022

Ecommerce-api - Rest api of e-commerce web application

Ecommerce-api - Rest api of e-commerce web application

E-commerce Rest API Swagger documentation to test api Domain diagram

Jan 2, 2023

GoVWA - A web application developed to help the pentester and programmers to learn the vulnerabilities

GoVWA - A web application developed to help the pentester and programmers to learn the vulnerabilities

Feb 12, 2022
Related tags
Web Applications go golang
Muxer - This repo is designed to trancode RTMP streams from the ingester and then push them to be muxed
 Muxer - This repo is designed to trancode RTMP streams from the ingester and then push them to be muxed

VidersMuxer This repo is designed to trancode RTMP streams from the ingester and

Feb 3, 2022
urlhunter is a recon tool that allows searching on URLs that are exposed via shortener services such as bit.ly and goo.gl.
 urlhunter is a recon tool that allows searching on URLs that are exposed via shortener services such as bit.ly and goo.gl.

a recon tool that allows searching on URLs that are exposed via shortener services

Jan 7, 2023
Tts - A project takes advantage of a server to run compute some audio file from text you send it

Text to Speech Hey this project takes advantage of a server to run compute some

Jan 26, 2022
An easy, fluent way of building URLs via chainable methods written in Go(lang)

Burl - a fluent URL builder Burl provides an easy, fluent way of building URLs via chainable methods. How to install go get github.com/mr-cryka/burl Q

Feb 5, 2022
A simple CRUD todo list application that is powered by Docker and Go

A simple CRUD todo list application that is powered by Docker and Go. Docker compose will run two containers todolist and mysql.

Jan 18, 2022
Tiny to-do list web app written in Go

Simple Lists Simple Lists is a tiny to-do list web app. It's written in Go in an old-school way with no JavaScript, plain old HTTP GET and POST, and a

Oct 19, 2022
Go-watchdog - a web application observability tool built for Go
 Go-watchdog - a web application observability tool built for Go

Go-watchdog is a web application observability tool built for Go, it exposes a status endpoint for application services like databases, caches, message-brokers, mails and storages.

Jul 11, 2022
This application is used as an example HTTP/SQLite application for Litestream tutorials.

This application is used as an example HTTP/SQLite application for Litestream tutorials. It simply maintains a count of HTTP requests and persists it to a SQLite database.

Apr 2, 2022
A simple database application that I was asked to implement as part of a job application process

This is a simple database application that I was asked to implement as part of a job application process. They told me I could choose any languages an

Nov 24, 2021
GoTTY - Share your terminal as a web application
 GoTTY - Share your terminal as a web application

GoTTY - Share your terminal as a web application GoTTY is a simple command line tool that turns your CLI tools into web applications. Installation Fro

Dec 28, 2022