Workflows

Get all possible URLs for a web app through js extraction, fuzzing per dir level, wayback archive, remove false positives and do everything in parallel

Enumerate URLs for a list of hosts, then use a wordlist to fuzz for additional directories at each level.

Enumerate URLs for a host, then use a wordlist to fuzz for additional directories at each level.

Take a list of URLs, request them, and send notification if changes occur in title, status code or content-length

Collect URLs of a list of domains and generate a custom parameter discovery wordlist

Enumerate subdomains and discover URLs through multiple ways

Enumerate URLs from passive sources and classify them based on potential vulnerabilities. Check out the URLs of public bug bounty programs on https://github.com/trickest/inventory

Actively crawl a list of web servers. Check out the crawled URLs of public bug bounty programs on https://github.com/trickest/inventory

Permutate and alter hosts in order to find firebase instances.

Get all of the parameters that are used by a single url passed.

Fuzz and spider a web application, get responses and zip files for further examination.

Find package.json files on list of hosts by creating wordlist by cloning OneListForAll and then brute-forcing list of hosts.

Find URLs/endpoints in a list of JavaScript files

Enumerate virtual hosts

Crawl a web host and extract endpoints and URLs from its JavaScript code

Fuzz a list of hosts for files/directories with a wordlist

Spider all subdomains and merge all results.

Find URLs & Paths in an APK file

Get all archived urls for a list of subdomains.

This workflow is used to gather ALL URLs and sort them by common vulnerabilities