cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
GPL-3.0 License
Bot releases are hidden (Show)
Published by edoardottt 7 months ago
cariddi v1.3.3 🥳
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
sudo snap install cariddi
go install -v github.com/edoardottt/cariddi/cmd/cariddi@latest
- Partially fixed proxy issues.
- Removed info scan regexes getting a lof of false positives.
- Dependencies update.
- Minor fixes and changes.
- Linting.
If you encounter a problem, just open an issue
What's Changed
- chore(deps): bump golang.org/x/net from 0.8.0 to 0.17.0 by @dependabot in https://github.com/edoardottt/cariddi/pull/131
- Devel update by @edoardottt in https://github.com/edoardottt/cariddi/pull/132
- chore(deps): bump github.com/fatih/color from 1.15.0 to 1.16.0 by @dependabot in https://github.com/edoardottt/cariddi/pull/134
- Devel update by @edoardottt in https://github.com/edoardottt/cariddi/pull/135
- Create FUNDING.yml by @edoardottt in https://github.com/edoardottt/cariddi/pull/136
- add BA install step by @noraj in https://github.com/edoardottt/cariddi/pull/137
- Devel update by @edoardottt in https://github.com/edoardottt/cariddi/pull/138
- chore(deps): bump google.golang.org/protobuf from 1.31.0 to 1.33.0 by @dependabot in https://github.com/edoardottt/cariddi/pull/140
- Devel update by @edoardottt in https://github.com/edoardottt/cariddi/pull/141
- v1.3.3 by @edoardottt in https://github.com/edoardottt/cariddi/pull/145
New Contributors
- @noraj made their first contribution in https://github.com/edoardottt/cariddi/pull/137
Full Changelog: https://github.com/edoardottt/cariddi/compare/v1.3.2...v1.3.3
Published by edoardottt over 1 year ago
cariddi v1.3.2 🥳
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
sudo snap install cariddi
go install -v github.com/edoardottt/cariddi/cmd/cariddi@latest
- Added
-sroption (Store HTTP responses, #121). - Documented input flags (#123).
- Added Example Regex File (#118).
- Minor fixes and changes.
- Updated README.md.
If you encounter a problem, just open an issue
Published by edoardottt over 1 year ago
cariddi v1.3.1 🥳
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
sudo snap install cariddi
go install -v github.com/edoardottt/cariddi/cmd/cariddi@latest
- Add JSON cli output by @ocervell
- Fix multiple info in the same URL
- Add new secrets
- Fix data image protocol link
- Fix snapcraft.yaml
- Create auto_assign.yml
- Minor fixes and changes
Thanks @ocervell 🥳
If you encounter a problem, just open an issue
Published by edoardottt over 1 year ago
cariddi v1.3.0 🥳
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
go install -v github.com/edoardottt/cariddi/cmd/cariddi@latest
- Wrap the New() params into a single object #95
- Wrap the results in a struct #96
- Fix code scanning alert - Incomplete regular expression for hostnames #98
- Second ctrl+c should force quit the program #89
- Refactor visitHTMLLink() #100
- Complete code refactoring
- Minor fixes and changes
- Insecure HTTPS by Default
- Updated Info regexes
- Fixed false positives
- Dependabot setup
Thanks @cyb3rjerry
If you encounter a problem, just open an issue
Published by edoardottt almost 2 years ago
cariddi v1.2.0 🥳
- Add Ctrl-C handle
- Closed Initial call to robots.txt and sitemap.xml don't enforce ignored words #81
- Closed -i docs doesn't ignore subdomains containing "docs" #79
- Closed "domain formatted in a bad way" kills scan and debug doesn't give any info on the URL that caused this #78
- Minor code improvements
- Minor changes and fixes
go install -v github.com/edoardottt/cariddi/cmd/cariddi@latest
Thanks @cyb3rjerry
If you encounter a problem, just open an issue
Published by edoardottt about 2 years ago
cariddi v1.1.8 🥳
- Add AWS cognito pool regex by @rodnt
- Add -insecure flag to ignore invalid HTTPS certificates by @mrnfrancesco
- Updated golangci-lint action configuration
- Updated dependencies
- Minor code improvements
- Minor changes and fixes
If you encounter a problem, just open an issue
Published by edoardottt almost 3 years ago
cariddi v1.1.3 🥳
- Added default requests to robots.txt and sitemap.xml.
- Fixed urls output.
- Minor changes.
Published by edoardottt about 3 years ago
cariddi v1.1.2 🥳
Removed comments and debug prints, minor changes.
Published by edoardottt about 3 years ago
cariddi v1.1.1 🥳
- Added event on action attribute of form tag (url crawling)
- Added event on xml sitemaps (url crawling)
- Code refactoring
- Add
make updatecommand that updates everything - Minor changes
Published by edoardottt about 3 years ago
cariddi v1.1 🎉
- Add event on action attribute of form HTML tag https://github.com/edoardottt/cariddi/commit/c1ae2036de81991df06b112958fb164a17d19216
- Add user agent creation to avoid the colly default one https://github.com/edoardottt/cariddi/commit/55fdca038452844bb9463bd91b7bcb246dde5452
- Add onXML event to catch sitemaps https://github.com/edoardottt/cariddi/commit/41c3c38b5a01dfd5faff7ae6fc43cf4de31b4f11
- Minor changes and fixes
Published by edoardottt about 3 years ago
🎉 First release ! 🎉
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more...
Try it out, I know there is still work to do, but I think it's ready for the first official release :)
Crawled more than 130.000 urls and searched for interesting endpoints, secrets and file extensions on 50+ targets in less than 10 minutes.
Open an issue for everything. Installation, usage and more details in the README file.
Enjoy and happy recon! ⚔️