A powerful platform for ethical hackers and penetration testers to perform deep reconnaissance on websites. Enter a URL and get a full picture of the site’s infrastructure, technologies, and potential attack surfaces.
- Accepts any valid URL and crawls it automatically
- Detects and displays:
- All external/internal resources (JS, CSS, API calls)
- IP address and geolocation of the hos
- Technologies used (CMS, frameworks, server info)
- GET/POST parameters from forms and APIs
- Request and response headers
- Full-page screenshot of the website
- CVE detection and passive vulnerability scanning (Coming soon!!!)
- Console application (Coming soon!!!)
- AI Report (Coming soon!!!)
- Install playwright
- Clone wappalyzer to the project root and follow its installation guide
- Configure RabbitMQ, Redis, Database, JWT, Ercaspay, Flutterwave, Github, Flutterwave & Gmail in appsettings
- Create and run database migration
- Start application
Contributions are welcome! Please open issues or pull requests.