_____ __ _ __ __
/ ___// /__(_)___/ / _____/ /_
\__ \/ //_/ / __ / / ___/ __ \
___/ / ,< / / /_/ / (__ ) / / /
/____/_/|_/_/\__,_(_)____/_/ /_/
-- @debxrshi
subdomain enumeration -> url crawling -> param mining -> js analysis -> lfi/xss/sqli automation
You can either build with docker:
docker build -t skid:skid .
Or,
run install.sh
to install tools locally. Script is configured for an Ubuntu VPS with Golang installed.
If you just want to perform recon on your target(s) it's advisable to run the recon.sh
script. It will perform all the recon you need for you and can also be run in subdomain monitoring mode with your discord webhook.
- Create a file
skidconfig
- Add your API keys in the file including webhooks. Check the demo file for correct format.
- Run the script
./recon.sh target.com || ./recon.sh -f targets.txt
- Create a file
skidconfig
- Add your API keys in the file.
- Run the script ->
./skid.sh target.com || ./skid.sh -f targets.txt
- ???
- Profit
If this script helped you, or you have suggestions, feel free to hit me up :) @cvewhen on Twitter, @xnu53x on Discord.