Skip to content

rbozburun/BasicPentestinGoKit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
cmd
cmd
 
 
pkg/actions
pkg/actions
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

PentestinGoKit

A basic pentesting automation toolkit written in Go.

Usage/Examples

C:\cmd>gokit.exe -h

USAGE:
    [global options] command [command options] [arguments...]

COMMANDS:
   help, h  Shows a list of commands or help for one command

GLOBAL OPTIONS:
 --target value     target web url
   --all              Run all security checks.
   --crossdomainxml   Check crossdomain.xml usage.
   --dirlisting       Check directory listing is enabled.
   --loginpagefinder  Check the target URL is login page or not.
   --tracedetector    Check the target URL is allow TRACE method.
   --serverdetector   Check the target URL's used webserver.
   --xframeoptions    Check the target URL's has an X-Frame-Options header or not.
   --hsts             Check the target URL's has an Strict-Transport-Security header or not.
   --help, -h         show help

Check All Security Issues

This option enables all security checks.

gokit.exe --all --target https://sibersaldirilar.com

Check Crossdomain.xml File

This option enables crossdomain.xml checker. It checks target/crossdomain.xml file is exists or not.

gokit.exe --crossdomainxml --target https://sibersaldirilar.com

Check Directory Listing Vulnerability

This option enables directory listing checker. It checks index of title is exists or not.

gokit.exe --dirlisting --target https://sibersaldirilar.com

Check Provided URL is a Login Page or Not

This option enables login page checker. It checks target url is a login page or not.

gokit.exe --loginpagefinder --target https://sibersaldirilar.com

Check TRACE Method is Allowed or Not

This option enables TRACE method checker. It checks target url is allowed TRACE method or not.

gokit.exe --tracedetector --target https://sibersaldirilar.com

Check Server Header Information Disclosure

This option enables HTTP Server Header checker. It checks Server Header of target url disclose any version information or not.

gokit.exe --serverdetector --target https://sibersaldirilar.com

Check X-Frame-Options Header Misconfigurations

This option enables X-Frame-Options Header checker. It checks X-Frame-Options of target url is implemented or not.

gokit.exe --xframeoptions --target https://sibersaldirilar.com

Check Strict-Transport-Security Header Misconfigurations

This option enables Strict-Transport-Security Header checker. It checks Strict-Transport-Security of target url is implemented or not.

gokit.exe --hsts --target https://sibersaldirilar.com

About

Basic pentesting toolkit written in GoLang

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages