This is a Web Application Security project that you can use to discover vulnerabilities and dynamically test applications. Automates the entire process of reconnaissance for you. It outperforms the work of subdomain enumeration along with various vulnerability checks and obtaining maximum information about your target. Made for study purposes, the project is currently incomplete and may encounter errors during execution.
💥 Unlock full potential of scanning, revolutionizing the way you work and empowering you to achieve greatness effortlessly 💥
- Python 3.8 or higher
- Required packages to run command-line tools: Subfinder, Amass, HttpProbe, Katana, Gau, Nuclei, and FFuf.
Clone the GitHub repository:
$ git clone https://github.com/BlackReaperSK/simple_dast/
$ cd simple_dast
Choose the DAST script and execute:
$ python3 [SCRIPT] [TARGET]
Where [SCRIPT]
is the script you want to execute, and [TARGET]
is the domain you want to explore.
- Python - Programming language
- Subfinder - Subdomain discovery tool
- Amass - Subdomain discovery tool
- HttpProbe - Tool to check HTTP(S) services on a set of subdomains
- Katana - Web page discovery tool
- Gau - Web page discovery tool
- FFuf - Web page discovery tool
- Felipe Souza - Inicial Work - BlackReaperSK