README
ΒΆ
csprecon
Discover new target domains using Content Security Policy
Coded with π by edoardottt
Install β’ Get Started β’ Examples β’ Changelog β’ Contributing β’ License
Install π‘
Homebrew
brew install csprecon
Snap
sudo snap install csprecon
Go
go install github.com/edoardottt/csprecon/cmd/csprecon@latest
Get Started π
Usage:
csprecon [flags]
Flags:
INPUT:
-u, -url string Input domain
-l, -list string File containing input domains
-cidr Interpret input as CIDR
CONFIGURATIONS:
-d, -domain string[] Filter results belonging to these domains (comma separated)
-c, -concurrency int Concurrency level (default 50)
-t, -timeout int Connection timeout in seconds (default 10)
-rl, -rate-limit int Set a rate limit (per second)
-px, -proxy string Set a proxy server (URL)
OUTPUT:
-o, -output string File to write output results
-v, -verbose Verbose output
-s, -silent Silent output. Print only results
-j, -json JSON output
Examples π‘
Grab all possible results from single domain
csprecon -u https://www.github.com
echo https://www.github.com | csprecon
Grab all possible results from a list of domains (protocols needed!)
csprecon -l targets.txt
cat targets.txt | csprecon
Grab all possible results belonging to specific target(s) from a list of domains (protocols needed!)
cat targets.txt | csprecon -d google.com
Grab all possible results from single CIDR
csprecon -u 192.168.1.0/24 -cidr
Set a rate limit of 10 requests per second
cat targets.txt | csprecon -rl 10
JSON Output
cat targets.txt | csprecon -j
Use a Proxy
cat targets.txt | csprecon -px http://127.0.0.1:8080
Changelog π
Detailed changes for each release are documented in the release notes.
Contributing π
Just open an issue / pull request.
Before opening a pull request, download golangci-lint and run
golangci-lint run
If there aren't errors, go ahead :)
In the news π°
License π
This repository is under MIT License.
edoardoottavianelli.it to contact me.
Directories
Click to show internal directories.
Click to hide internal directories.