Repo for hosting rayder workflows. Install Rayder from here
| Category | Workflow | Description | Placeholder(s) | Dependencies |
|---|---|---|---|---|
| Recon | generate-dns-wordlist.yaml | Generate custom DNS Bruteforce wordlist for a domain | {{DOMAIN}}, {{OUTPUT_DIR}} | subfinder, dnsgen |
| Scanning | open-redirect.yaml | Scan for Open Redirect vulnerabilities in params found in web archive for a domain | {{DOMAIN}}, {{OUTPUT_DIR}} | Paramspider, Openredirex |
| Scanning | xss-wayback.yaml | Discover potential XSS vulnerabilities on the URLs stored in Wayback archive for a domain | {{DOMAIN}}, {{OUTPUT_DIR}} | waybackurls, qsreplace, httpx |
| Recon | check-alive-ips.yaml | Check alive IPs (port 80, 443) for a file containing target IP addresses or ranges | {{TARGETS_FILE}}, {{OUTPUT_DIR}}, {{RATE}} | masscan |
| Scanning | header-brute.yaml | Brute force HTTP headers on a list of URLs | {{URLS_FILE}}, {{HEADERS_FILE}}, {{OUTPUT_DIR}} | headerpwn |
| Recon | mutate-subdomains-radamsa.yaml | Mutate subdomains of a domain using radamsa and resolve using massdns | {{DOMAIN}}, {{OUTPUT_DIR}} | massdns, radamsa, getresolvers, subfinder |
| Scanning | crlf-scan.yaml | Scan for CRLF vulnerabilities in subdomains of a domain | {{DOMAIN}}, {{OUTPUT_DIR}} | subfinder, httpx, crlfuzz |
| Recon | extract-urls-from-apk.yaml | Extract URLs from an APK file for further analysis | {{APK}}, {{OUTPUT_DIR}} | apktool |
| Scanning | gau-check-html-reflection.yaml | Checks for HTML reflection on URL parameters of a domain fetched via gau | {{DOMAIN}}, {{OUTPUT_DIR}} | httpx, gau, qsreplace |