-
Notifications
You must be signed in to change notification settings - Fork 48
Supported options
As noted on the README page, due to the difficulty to parse all possible outputs, i have limited the program to work with simplest, most common and the most useful options. Here is a list of working options per each worker.
Amass does not support -d options. Please don't use it. To specify target for amass, use either Hosts field or checkbox All_top_level_domains.
Divide with commas all the hosts you want to scan. For example
ya.ru,hackerone.com,mail.ru
Putting a tick, means that program will go to the database, find all hosts, take top level hosts from them and scan those.
For example, if database has hackerone.com, ya.ru and dev.ya.ru, amass will be launched against ya.ru and hackerone.com.
Note that in case of yahoo.co.uk amass will start working against co.uk. This is a known bug, i will address it further on.
Masscan deep inside is launched with -oX -, meaning the output will be written as XML to stdout. So don't try to change that, that won't work.
Masscan is primarily used for finding open ports, not grabbing banners. Masscan does not find banners very well. So for now limit yourself with -p option. However, you can use any port format masscan supports.
For example, -p80,443 will work ok, as well as -p1-65535.
Nmap can find open ports as well as banners, so options -p80, -sV are fine. Other options are not guaranteed. Most likely, the program won't successfully scan UDP for now. This is known and will be addressed ASAP.
Deep inside nmap uses -oX - to get a nice and parsable output format, so please don't specify those yourself.
This will launch nmap with usual arguments, however it will be launched only against open ports. Primary use for this is to grab banners on open ports, which were acquired after masscan finished finding ports. So -sV is good here. Others are not guaranteed
Dirsearch is good with different extensions, this is a primary use-case. Use comma-separated extensions. For example php,txt
Patator should be ok with different options you can imagine. I have tried SSH and FTP which seem to be working well. Other options are not guaranteed, although you might try, feedback is always welcome!