𧡠Here we are! Katana, a new web Crawler by @pdiscoveryio
Let's see how it works. A thread ππ§΅
#recontips #recon #projectdiscovery #hackwithautomation #bugbounty
Let's see how it works. A thread ππ§΅
#recontips #recon #projectdiscovery #hackwithautomation #bugbounty
1/7 - Quick Start - Crawling Mode
You can crawl websites in Standard mode or Headless mode (-hl). Add -jc for JS Crawling
$ katana -u http://testphp.vulnweb. com
$ katana -u http://testphp.vulnweb. com -hl
$ katana -list url_list.txt -jc
You can crawl websites in Standard mode or Headless mode (-hl). Add -jc for JS Crawling
$ katana -u http://testphp.vulnweb. com
$ katana -u http://testphp.vulnweb. com -hl
$ katana -list url_list.txt -jc
2/7 - Filters - 1
You can filter results to show only urls,path,file, and much more
$ katana -u http://testphp.vulnweb. com -fields path
$ katana -u http://testphp.vulnweb. com -fields file
$ katana -u http://testphp.vulnweb. com -fields dir
You can filter results to show only urls,path,file, and much more
$ katana -u http://testphp.vulnweb. com -fields path
$ katana -u http://testphp.vulnweb. com -fields file
$ katana -u http://testphp.vulnweb. com -fields dir
3/7 - Filters - 2
Use -em to match file extension and -ef to filter output
$ katana -u http://testphp.vulnweb. com -em php,js,txt
$ katana -u http://testphp.vulnweb. com -ef png,gif,woff
Use -em to match file extension and -ef to filter output
$ katana -u http://testphp.vulnweb. com -em php,js,txt
$ katana -u http://testphp.vulnweb. com -ef png,gif,woff
4/7 - Results
You can output results on a file, in json format (-j) or select silent mode
$ katana -u http://testphp.vulnweb. com -o out
$ katana -u http://testphp.vulnweb. com -j -o out.json
$ katana -u http://testphp.vulnweb. com -silent
You can output results on a file, in json format (-j) or select silent mode
$ katana -u http://testphp.vulnweb. com -o out
$ katana -u http://testphp.vulnweb. com -j -o out.json
$ katana -u http://testphp.vulnweb. com -silent
5/7 - Speed
Adjust concurrency (url per target), parallelism (number of parallel targets), delay and rate-limit
$ katana -u http://testphp.vulnweb. com -d 10 -c 5
$ katana -list targets.txt -p 5 -delay 12
$ katana -u http://testphp.vulnweb. com -rl 20
Adjust concurrency (url per target), parallelism (number of parallel targets), delay and rate-limit
$ katana -u http://testphp.vulnweb. com -d 10 -c 5
$ katana -list targets.txt -p 5 -delay 12
$ katana -u http://testphp.vulnweb. com -rl 20
6/7 - Scope Control
Use -cs to crawl specific url string while -cos to exclude. Use -fs fqdn to stay in the provided domain.
$ katana -u http://site. com -cs images
$ katana -u http://site. com -cos admin
$ katana -u test.site. com -fs fqdn
Use -cs to crawl specific url string while -cos to exclude. Use -fs fqdn to stay in the provided domain.
$ katana -u http://site. com -cs images
$ katana -u http://site. com -cos admin
$ katana -u test.site. com -fs fqdn
7/7 - Configuration - Useful Options
Depth
$ katana -u http://site. com -depth 10
Timeout
$ katana -u http://site. com -timeout 20
Proxy
$ katana -u http://site. com -proxy http://127.0.0.1:8080
Depth
$ katana -u http://site. com -depth 10
Timeout
$ katana -u http://site. com -timeout 20
Proxy
$ katana -u http://site. com -proxy http://127.0.0.1:8080
Thatβs it for today!
Follow me @ReconOne_bk for weekly posts on Recon, Bug Bounty & Attack Surface Management.
Follow me @ReconOne_bk for weekly posts on Recon, Bug Bounty & Attack Surface Management.
https://twitter.com/ReconOne_bk/status/1589959281624784896?t=0UWFT_r6I1Tjnhy3g7IeTA&s=19
β’ β’ β’
Missing some Tweet in this thread? You can try to
force a refresh
γ
