Kanha - A web-app pentesting suite written in rust ๐ฆ
Installation
โฆพ
Subcommands
โฆพ
Contribute
Kanha is a tool that can help you perform, a variety of attacks based on the target domain . With just kanha you can do, Fuzzing, Reverse dns lookup,
common http response, subdomain takeover detection and many more.
The project is inspird by mini.nvim, basically helping you to be productive with less numbers of tools(plugins) installed on your system and be unobtrusive and function as a standalone single binary out of the box.
Built from the ground up with performance, ease of use, and portability in mind in your favourite programming lang rust ๐
๐ง Philosophy
- KISS - Keep things simple and stupid.
- Ease - Write code that can be used elsewhere as well.
- Efficiency - Optimize for performance without sacrificing readability.
๐ฑ Installation
๐ช Binary
ย
- You can directly download the binary of your arch and run it.
๐ผ Source
ย
git clone --depth=1 https://github.com/pwnwriter/kanha --branch=main
cd kanha
cargo build --release Then go to release dir and ./kanha or move the binary to your any $PATH for instant access from anywhere.
๐ Cargo
๐ฉ METIS Linux
ย
sudo/doas pacman -Syyy kanha๐ข Arch user repository
ย
paru/yay -S kanha-git๐ Subcommands
-
โ
Status:- Just return the HTTP response code of URLs๐ป Help
ย$ kanha status -h Just return the HTTP response code of URLs Usage: kanha status [OPTIONS] Options: -f, --filename <FILENAME> A file containing multiple urls -t, --tasks <TASKS> Define the maximum concurrent tasks [default: 20] --stdin Reads input from the standard in --exclude <EXCLUDE> Define your status code for selective exclusion -h, --help Print help -V, --version Print version
๐ฆ Screenshots
ย
-
โ
fuzz:- Fuzz URLs and return the response codes๐ป Help
ย$ kanha fuzz -h Fuzz a URL and return the response codes Usage: kanha fuzz [OPTIONS] --payloads <PAYLOADS> Options: -p, --payloads <PAYLOADS> A file containing a list of payloads -u, --url <URL> A single url -f, --file-path <FILE_PATH> Path of the file containing multiple urls -t, --tasks <TASKS> Define the maximum concurrent tasks [default: 20] --exclude <EXCLUDE> Define your status code for selective exclusion --stdin Reads input from the standard in -h, --help Print help -V, --version Print version
๐ฆ Screenshots
ย
-
โ
rdns:- Reverse dns lookup๐ป Help
ย$ kanha rdns -h Reverse dns lookup Usage: kanha rdns [OPTIONS] --filename <FILENAME> Options: -f, --filename <FILENAME> a file containing a list of possible wordlists --stdin Reads input from the standard in -h, --help Print help -V, --version Print version
๐ฆ Screenshots
ย
-
โ
Takeover:- Check possible subdomain takeover๐ป Help
ย$ kanha takeover -h Check possible subdomain takeover vulnerability Usage: kanha takeover [OPTIONS] Options: -u, --url <URL> A single url -f, --file-path <FILE_PATH> Path of the file containing multiple urls -j, --json-file <JSON_FILE> A json file containing signature values of different services --stdin Reads input from the standard in -h, --help Print help -V, --version Print version
๐ฆ Screenshots
ย
-
โ
urldencode:- (De|En) code urls๐ป Help
ย$ kanha urldencode -h (De|En) code urls Usage: kanha urldencode [OPTIONS] Options: --encode <ENCODE> Provide a url to encode --decode <DECODE> Provide a url to dencode -h, --help Print help -V, --version Print version
๐ฆ Screenshots
ย
๐ Contributing
- ๐ชถ Recommend a new features
- โญ Give the project a star
- ๐ Add new subcommand.
- ๐งโ๐ Fix docx // improve code quality
๐ Also see
haylxon:- Blazingly fast tool to grab screenshots of your domain list right from terminal written in rust ๐ฆhttpx:- httpx is a fast and multi-purpose HTTP toolkit.ffuf:- Fast web fuzzer written in Go
๐ License
As always, this project is also licensed under the MIT LICENSE
ย
Copyright ยฉ 2023 pwnwriter xyz โ๏ธ