____________________ __ ________________________________
__ ____/__ |_ / / / __ ___/_ ___/__ __ \__ ____/
_ / __ __ /| | / / / _____ \_____ \__ /_/ /_ /_
/ /_/ / _ ___ / /_/ / ____/ /____/ /_ _, _/_ __/
\____/ /_/ |_\____/ /____/ /____/ /_/ |_| /_/
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SSRF Parameters. This Tool was built to present in Null Ahmedabad Deep Dive into SSRF you can get slides from the link.
- GetAllUrls - For Fetching Urls
- Assetfinder - For Subdomain Enumeration
- Anti-burl - For check if url is live or not.
You can now use install.sh to install require tools, this tools where made in go it should be installed in your system and dont forget to set path of go properly.
$ sudo chmod +x install.sh
$ ./install.sh
$ git clone https://github.com/KathanP19/gaussrf.git
$ cd gaussrf/
$ sudo chmod +x ssrf.sh
$ ./ssrf domain.com
Thanks @tomnomom for Assetfinder,Anti-burl!
Thanks @lc for GAU!
Integrate ffuf to fuzz params with burp collab url.