Discover and read the best of Twitter Threads about #hackwithautomation
Most recents (3)
Big update! #nuclei just got a major update, adding URL Fuzzing and many new features 🧵
Release Blog –– blog.projectdiscovery.io/nuclei-fuzz-al…
Release CL –– github.com/projectdiscove…
Fuzzing Templates –– github.com/projectdiscove…
#hackwithautomation #dast #opensource #cybersecurity #bugbounty
Release Blog –– blog.projectdiscovery.io/nuclei-fuzz-al…
Release CL –– github.com/projectdiscove…
Fuzzing Templates –– github.com/projectdiscove…
#hackwithautomation #dast #opensource #cybersecurity #bugbounty
🧵 Here we are! Katana, a new web Crawler by @pdiscoveryio
Let's see how it works. A thread 👇🧵
#recontips #recon #projectdiscovery #hackwithautomation #bugbounty
Let's see how it works. A thread 👇🧵
#recontips #recon #projectdiscovery #hackwithautomation #bugbounty
1/7 - Quick Start - Crawling Mode
You can crawl websites in Standard mode or Headless mode (-hl). Add -jc for JS Crawling
$ katana -u http://testphp.vulnweb. com
$ katana -u http://testphp.vulnweb. com -hl
$ katana -list url_list.txt -jc
You can crawl websites in Standard mode or Headless mode (-hl). Add -jc for JS Crawling
$ katana -u http://testphp.vulnweb. com
$ katana -u http://testphp.vulnweb. com -hl
$ katana -list url_list.txt -jc
2/7 - Filters - 1
You can filter results to show only urls,path,file, and much more
$ katana -u http://testphp.vulnweb. com -fields path
$ katana -u http://testphp.vulnweb. com -fields file
$ katana -u http://testphp.vulnweb. com -fields dir
You can filter results to show only urls,path,file, and much more
$ katana -u http://testphp.vulnweb. com -fields path
$ katana -u http://testphp.vulnweb. com -fields file
$ katana -u http://testphp.vulnweb. com -fields dir
Nuclei (by @pdiscoveryio) is a vulnerability detection tool used by thousands of people every day.
But only a few master it at 100%
Here is how you can improve the use of the tool 🧵 👇
#nuclei #bugbounty #bugbountytips #hackwithautomation
But only a few master it at 100%
Here is how you can improve the use of the tool 🧵 👇
#nuclei #bugbounty #bugbountytips #hackwithautomation
1/6 Default mode
By default nuclei use almost all templates, so if your objective is a complete scan, you can try:
$ nuclei -u http://site. com
$ nuclei -l url_list.txt
$ cat urls.txt | nuclei
(WARNING: this could overload servers)
By default nuclei use almost all templates, so if your objective is a complete scan, you can try:
$ nuclei -u http://site. com
$ nuclei -l url_list.txt
$ cat urls.txt | nuclei
(WARNING: this could overload servers)
2/6 Templates Scan
You can specify templates, folders, tags or severity:
$ nuclei -u http://site. com -t my-template.yaml
$ nuclei -u http://site. com -t nuclei-templates/cves/
$ nuclei -u http://site. com -tags log4j
$ nuclei -u http://site. com -severity low
You can specify templates, folders, tags or severity:
$ nuclei -u http://site. com -t my-template.yaml
$ nuclei -u http://site. com -t nuclei-templates/cves/
$ nuclei -u http://site. com -tags log4j
$ nuclei -u http://site. com -severity low
