Documentation ¶
Index ¶
- func AlienVault(domain string, results chan string, client *http.Client) error
- func AlienVaultUrls(domain string, results chan string, client *http.Client, recursive bool) error
- func Anubis(domain string, results chan string, client *http.Client) error
- func Check403(url, word string, timeout int) ([]string, []int, error)
- func CheckRedirect(url string, c *http.Client, payloads []string, keyword string) ([]string, error)
- func CommonCrawl(domain string, results chan string, client *http.Client) error
- func CreateHttpClient(timeout int) *http.Client
- func CreateHttpClientFollowRedirects(timeout int) *http.Client
- func Crt(domain string, results chan string, client *http.Client) error
- func DefaultHttpClient() *http.Client
- func DetectWaf(url string, payload string, keyword string, client *http.Client) (string, error)
- func Digitorus(domain string, results chan string, client *http.Client) error
- func Dns(domain string) (core.DnsInfo, error)
- func FetchEndpoints(urls <-chan string, results chan string, client *http.Client) error
- func FilterUrls(urls []string, filters []string) []string
- func FindSecrets(url string, client *http.Client) ([]string, error)
- func GetAllPerms() []string
- func GetAllUrls(domain string, results chan string, client *http.Client, recursive bool) error
- func GetCommonPayloads() []string
- func GetEndpoints(urls []string, results chan string, workers int, client *http.Client) error
- func GetPayloads() []string
- func GetPerms(level int) []string
- func GetSubdomains(domain string, results chan string, providers []string, client *http.Client) error
- func GetTech(url string, client *http.Client) (map[string]struct{}, error)
- func HackerTarget(domain string, results chan string, client *http.Client) error
- func RapidDns(domain string, results chan string, client *http.Client) error
- func StartTimer() time.Time
- func TimerDiff(t1 time.Time) time.Duration
- func UrlScanUrls(domain string, results chan string, client *http.Client, recursive bool, ...) error
- func Wayback(domain string, results chan string, client *http.Client) error
- func WaybackUrls(domain string, results chan string, client *http.Client, workers int, ...) error
- func Whois(domain string) (wp.WhoisInfo, error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func AlienVaultUrls ¶
func Check403 ¶
try different ways to bypass 403 status code urls returns slice of urls with payloads on them, a slice with their respective status codes, and finally an error
func CheckRedirect ¶
this function checks if given url is vulnerable to open redirect with provided payloads if keyword has value, it will be replaced with payloads Example: vuln_urls, err := CheckRedirect("http://example.com/index.php?p=FUZZ", client, []string{"bing.com", "//bing.com"}, "FUZZ")
func CreateHttpClient ¶
create an http client with given timeout (in milliseconds), skip tls verify and some other useful settings don't follow redirects Example: client := CreateHttpClient(5000)
func CreateHttpClientFollowRedirects ¶
this functions does the same as CreateHttpClient() but this one follows redirects
func DefaultHttpClient ¶
function which aids users if they want to use a default client instance instead of creating a new one
func DetectWaf ¶
this function send a request to url with an LFI payload to try to trigger the possible WAF (Web Application Firewall) i.e. Cloudflare Example: waf, err := gorecon.DetectWaf(url, "", "", gorecon.DefaultHttpClient())
func Dns ¶
main function for DNS information gathering it receives a domain and tries to find most important info and returns a DnsInfo struct and an error
func FetchEndpoints ¶
this function receives urls from channel so it's better for concurrency and configuration
func FilterUrls ¶
remove useless urls, duplicates and more to optimize results as much as possible from a list of urls Example: new_urls := gorecon.FilterUrls(urls, []string{"hasparams"})
func FindSecrets ¶
this function receives a url and a client to look for potential leaked secrets like API keys (using regex) Example: secrets, err := gorecon.FindSecrets("http://github.com", gorecon.DefaultClient())
func GetAllPerms ¶
func GetAllPerms() []string
this function returns all defined permutations for S3 buckets name generation
func GetAllUrls ¶
main function to enumerate urls about provided domain, urls are sent through channel set "recursive" to false if you don't want to get urls related to subdomains
func GetEndpoints ¶
main function to extract JS endpoints from a list of urls it receives a custom client for further customization Example: go gorecon.GetEndpointsFromFile(urls, results, 15, gorecon.DefaultClient())
func GetPerms ¶
this function returns more or less permutations based on given level 1 returns less permutations than 6 (1 lower, 5 higher)
func GetSubdomains ¶
func GetSubdomains(domain string, results chan string, providers []string, client *http.Client) error
this function sents through provided channel all the gathered subdomains providers slice is used to configure the providers to use it also receives a client so you can custom most of the process Example: err := GetSubdomains("example.com", results, []string{"alienvault", "crt", "rapiddns", "wayback"}, gorecon.DefaultClient())
func GetTech ¶
this function send a request to given url and returns running technologies Example: techs, err := GetTech("http://github.com", gorecon.DefaultClient())
func HackerTarget ¶
func StartTimer ¶
return current time for later chaining with TimerDiff() to get elapsed time
func TimerDiff ¶
this function receives a time and returns difference between current time and given time
func UrlScanUrls ¶
func WaybackUrls ¶
Types ¶
This section is empty.