An automated tool that scans and analyzes subdomains. It then looks for gaps security such as xss, ssti, ssrf and many more injections.
- Requirements: Go Language, Python 2.7 or Python 3.
- System requirements: It is recommended to operate on vps with 1VCPU and 2GB ram.
- Used tools - You must have these tools installed to use this script
- SubFinder
- Sublist3r
- GF drawings
- Get a title
- Takeover.py
- Gau
- Beast of burden
- Subjack
- Assetfinder
- HTTPX
- Waybackurls
- Kxss
- QReplace
- FfuF
- Nuclei
- Dalfox
- Dirsearch
- A NEW
- ParamSpider
- Notify
Installation - Make sure you are rooted before installing the tool
git clone https://github.com/R0X4R/Garud.git && cd Garuda / && chmod + x garud install.sh && mv garud / usr / bin / && ./install.sh
- UseUse: -d goal που Would you like to scan (target. With )
Use : -f output list where will Would you like to save the file ( ~ / target - output / )
garud -d -goal . com -f target-output - Slack Bot
wget https://raw.githubusercontent.com/R0X4R/Garud/master/slack-bot.py ~ /slack-bot.py pip3 installation slackclient slacker
Add your slack token to the slack-bot.py file.
Slack Webhook for notice: Slack Blog
Notification configuration: https://github.com/projectdiscovery/notify#config-file