carlospolop-hakoriginfinder
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
Details
Category: Discovery
Publisher: trickest-mhmdiaa
Created Date: 12/29/2022
Container: quay.io/trickest/carlospolop-hakoriginfinder:d4da699
Source URL: https://github.com/carlospolop-forks/hakoriginfinder
Parameters
ssl
boolean
Command:
-s
- Original hostname is over SSL (default: false)port
string
Command:
-p
- Original hostname listen portdebug
boolean
Command:
-d
- Debug: Show web servers responses (default: false)threads
string
Command:
-t
- numbers of threads (default 32)timeout
string
Command:
-T
- Timeout in seconds (default 5)hostname
string
requiredCommand:
-h
- hostname of site, e.g. www.hakluke.comthreshold
string
Command:
-l
- levenshtein threshold, higher means more lenient (default 5)urls-file
file
requiredCommand:
- Specify file with target URLs