• Stars
    star
    516
  • Rank 85,726 (Top 2 %)
  • Language
    Go
  • License
    The Unlicense
  • Created almost 5 years ago
  • Updated about 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs

Scout

Travis Build Status

Scout is a URL fuzzer and spider for discovering undisclosed VHOSTS, files and directories on a web server.

A full word list is included in the binary, meaning maximum portability and minimal configuration. Aim and fire!

Usage

Usage:
  scout [command]

Available Commands:
  help        Help about any command
  url         Discover URLs on a given web server.
  version     Display scout version.
  vhost       Discover VHOSTs on a given web server.

Flags:
  -d, --debug             Enable debug logging.
  -h, --help              help for scout
  -n, --no-colours        Disable coloured output.
  -p, --parallelism int   Parallel routines to use for sending requests. (default 10)
  -k, --skip-ssl-verify   Skip SSL certificate verification.
  -w, --wordlist string   Path to wordlist file. If this is not specified an internal wordlist will be used.

Discover URLs

Flags

-x, --extensions

File extensions to detect. (default php,htm,html,txt])

-f, --filename

Filename to seek in the directory being searched. Useful when all directories report 404 status.

-H, --header

Extra header to send with requests e.g. -H "Cookie: PHPSESSID=blah"

-c, --status-codes

HTTP status codes which indicate a positive find. (default 200,400,403,500,405,204,401,301,302)

-m, --method

HTTP method to use.

-s, --spider

Scan page content for links and confirm their existence.

Full example

$ scout url http://192.168.1.1
  
  [+] Target URL      http://192.168.1.1
  [+] Routines        10 
  [+] Extensions      php,htm,html 
  [+] Positive Codes  200,302,301,400,403,500,405,204,401,301,302
  
  [302] http://192.168.1.1/css
  [302] http://192.168.1.1/js
  [302] http://192.168.1.1/language
  [302] http://192.168.1.1/style
  [302] http://192.168.1.1/help
  [401] http://192.168.1.1/index.htm
  [302] http://192.168.1.1/image
  [200] http://192.168.1.1/log.htm
  [302] http://192.168.1.1/script
  [401] http://192.168.1.1/top.html
  [200] http://192.168.1.1/shares
  [200] http://192.168.1.1/shares.php
  [200] http://192.168.1.1/shares.htm
  [200] http://192.168.1.1/shares.html
  [401] http://192.168.1.1/traffic.htm
  [401] http://192.168.1.1/reboot.htm
  [302] http://192.168.1.1/debug
  [401] http://192.168.1.1/debug.htm
  [401] http://192.168.1.1/debug.html
  [401] http://192.168.1.1/start.htm
  
  Scan complete. 28 results found. 

Discover VHOSTs

$ scout vhost https://google.com
  
  [+] Base Domain     google.com
  [+] Routines        10 
  [+] IP              -
  [+] Port            - 
  [+] Using SSL       true
  
  account.google.com
  accounts.google.com
  blog.google.com
  code.google.com
  dev.google.com
  local.google.com
  m.google.com
  mail.google.com
  mobile.google.com
  www.google.com
  admin.google.com
  chat.google.com
  
  Scan complete. 12 results found.

Installation

curl -s "https://raw.githubusercontent.com/liamg/scout/master/scripts/install.sh" | bash

More Repositories

1

traitor

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Go
6,575
star
2

darktile

🌘 Darktile is a GPU rendered terminal emulator designed for tiling window managers.
Go
2,743
star
3

gitjacker

🔪 :octocat: Leak git repositories from misconfigured websites
Go
1,532
star
4

tml

🌈💻🎨 A tiny markup language for terminal output. Makes formatting output in CLI apps easier!
Go
729
star
5

shox

🍫 A customisable, universally compatible terminal status bar
Go
700
star
6

dismember

🔪 Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
Go
593
star
7

furious

😠 Go IP/port scanner with SYN (stealth) scanning and device manufacturer identification
Go
569
star
8

memit

🚫💾 Run binaries straight from memory in Linux
Go
305
star
9

grace

🪛 It's strace, with colours.
Go
250
star
10

bearings

🧭 A fast, clean, customisable shell prompt for zsh, bash, fish, and more...
Go
195
star
11

siphon

⚗️ Intercept stdin/stdout/stderr for any process
Go
187
star
12

pax

💀 🔓 CLI tool for PKCS7 padding oracle attacks
Go
135
star
13

comet

☄️ Command line tool to help you use conventional commit messages (https://www.conventionalcommits.org)
Go
109
star
14

memoryfs

🧠 🗄️ In-memory filesystem implementation of io/fs.FS
Go
87
star
15

extrude

🕵️ Analyse binaries for missing security features, information disclosure and more...
Go
69
star
16

gifwrap

🐙 GIFs in your terminal
Go
54
star
17

flinch

A collection of terminal-based widgets for richer Golang CLI apps.
Go
44
star
18

loading

A collection of highly customisable loading bars for Go CLI apps.
Go
34
star
19

guerrilla

📨👤 Guerilla Mail CLI + Go module
Go
28
star
20

sunder

✂️ terminal multiplexer in golang // a minimalist tmux alternative
Go
27
star
21

magic

🎩🐇 Toolkit for detecting and verifying file type using magic bytes in pure Golang
Go
24
star
22

peridot

Developer machine management for Linux/OSX. Think Terraform/Ansible for your dotfiles/packages! ⚙️🏠
Go
20
star
23

clinch

Go CLI toolkit 🔨
Go
19
star
24

github-profile-terminal-action

Create a GitHub profile README nested inside a terminal nested inside a GIF
Go
17
star
25

gobless

Build beautiful terminal dashboards/GUIs in golang.
Go
16
star
26

lyric

🎵 Song lyrics in your terminal via Genius
Go
16
star
27

js-nes-emulator

NES emulator in javascript.
JavaScript
13
star
28

lambo

Test your API gateway routed lambdas locally and in CI
Go
8
star
29

sshotp

Enter passwords to commands non-interactively
Go
8
star
30

hackerone

Go HackerOne API Client
Go
8
star
31

raytracing

3D Raytracing in Go
Go
8
star
32

thisisfine

This is fine.
Makefile
7
star
33

darktile-themes

A repository of themes for https://github.com/liamg/darktile
Shell
7
star
34

liamg

GitHub profile (auto-updated every 4 hours)
6
star
35

gomoon

🌚 🌒 🌓 🌔 🌝 🌖 🌗 🌘 🌚
Go
6
star
36

jfather

JSON parsing with extra metadata
Go
6
star
37

happen

Go
5
star
38

termutil

Terminal utilities
Go
4
star
39

philter

Personal home DNS with ad blocking
Go
4
star
40

iris-layout

A UK coding layout for the Iris rev4 keyboard
C
4
star
41

bfc

A compiler for brainfuck by someone who has no idea how compilers work
Go
4
star
42

waitforhttp

Tiny package to wait for an HTTP server to be up
Go
4
star
43

iamgo

Parse/assemble AWS IAM policy documents and their various quirks
Go
4
star
44

fontinfo

Go package to list/match available fonts on a Linux system
Go
4
star
45

rope

〰️ A rope data-structure implementation designed for UTF-8 text manipulation.
Go
3
star
46

dotfiles

Shell
2
star
47

lcd

Go module for driving (non-I2C) LCD devices
Go
2
star
48

nvim-config

Lua
2
star
49

go-project-template-cli

A template for my Go CLI projects
Makefile
2
star
50

ecs

Entity Component System architecture implementation in Go
Go
2
star
51

golume

Go
1
star
52

dnsaur

DNS client/server components in node.
JavaScript
1
star
53

postMessageSniffer

Simple chrome extension to console.log all received postMessage payloads.
JavaScript
1
star
54

reversing

Reverse engineering challenge hackery
C
1
star
55

adtechblogs

The Best Ad Tech Blogs
1
star
56

torrentialjs

BitTorrent library in Node
JavaScript
1
star
57

gca

🔬🎲 Go Cellular Automata
Go
1
star
58

.github

My default .github miscellany
1
star
59

sidestep

↔️ Tunnel TCP/UDP over DNS: Evade firewalls for fun and profit
1
star
60

dijits

JavaScript library to convert between numbers and words: 407 -> Four hundred and seven
JavaScript
1
star
61

tls

🔒 Custom TLS implementation for no good reason
Go
1
star
62

gomega

A Sega Mega Drive (Genesis) Emulator in Go.
1
star
63

writeups

1
star
64

xu

Modern Hex Editor
Go
1
star