____________________ __ ________________________________
__ ____/__ |_ / / / __ ___/_ ___/__ __ \__ ____/
_ / __ __ /| | / / / _____ \_____ \__ /_/ /_ /_
/ /_/ / _ ___ / /_/ / ____/ /____/ /_ _, _/_ __/
\____/ /_/ |_\____/ /____/ /____/ /_/ |_| /_/
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SSRF Parameters. This Tool was built to present in Null Ahmedabad Deep Dive into SSRF you can get slides from the link.
- GetAllUrls - For Fetching Urls
- Assetfinder - For Subdomain Enumeration
- Anti-burl - For check if url is live or not.
You can now use install.sh to install require tools, this tools where made in go it should be installed in your system and dont forget to set path of go properly.
$ sudo chmod +x install.sh
$ ./install.sh
$ git clone https://github.com/KathanP19/gaussrf.git
$ cd gaussrf/
$ sudo chmod +x ssrf.sh
Dont Forget to put your blind ssrf testing link or burp collab link in burp.txt
If you want to save results in default directory ./recon/domain.com
$ ./ssrf.sh domain.com
If you want to save results in other directory ~/output_directory/gaussrf/recon/domain.com
$ ./ssrf.sh domain.com -o output_directory
$ ./ssrf.sh domain.com --output output_directory
Thanks @tomnomom for Assetfinder,Anti-burl!
Thanks @lc for GAU!
Integrate ffuf to fuzz params with burp collab url.
@iNoSec2 for adding output option.