-
Notifications
You must be signed in to change notification settings - Fork 0
Modules
sudo3rs edited this page Aug 15, 2025
·
1 revision
Below are the available modules, their purpose, and output format (human view).
| Module | Purpose | Notes |
|---|---|---|
| Crawler | Shallow crawl (internal pages), external links, emails | Depth=1; polite. |
| HTTP Headers | Show response headers | Baseline for fingerprinting. |
| Tech Fingerprint | Identify tech hints (headers & DOM) | Simple signatures (e.g., WordPress, React). |
| Security Headers | Check presence/values of key headers | HSTS, CSP, XFO, XCTO, Referrer-Policy, Permissions-Policy. |
| TLS | Cert subject/issuer validity window | SNI-aware; may fail on blocked handshakes. |
| DNS Records | A/AAAA/MX/NS/TXT/SOA | Uses dnspython (short lifetimes). |
| WHOIS | Domain WHOIS |
python-whois; registrars vary. |
| Subdomain Scan | Enumerate subdomains | CT logs (crt.sh) + optional DNS brute-force (semi). |
| VirusTotal | URL reputation summary | API key optional; shows last_analysis_stats. |
| urlscan.io | Recent scans for domain | Shows last 5 results w/ links. |
| OTX | AlienVault pulse count & validation | Requires OTX key for full info. |
| GitHub Code | Code search for domain string | Use token to raise rate limits. |
| Shodan | IP host summary | Requires IP resolution + API key. |
| GreyNoise | IP community classification | Community endpoint; requires key. |
| AbuseIPDB | IP reputation stats | Abuse confidence, reports, ISP, country. |
| Exposure Checks | HEAD requests to common leakage paths |
/.git/config, /.env, /server-status, /phpinfo.php
|
| JS Secrets | Downloads external JS and searches for naive patterns | e.g., AKIA[0-9A-Z]{16}
|
Rendering is tuned for human-readable tables. Raw JSON is still available under the JSON tab.