Rad+xray vulnerability scanning tool

rad full name Radium
rad It is also a directory crawling tool developed for Changting Technology ,
So combine rad It can automatically crawl more efficiently . Be careful rad Just crawl the directory of the target , Do not crawl subdomains .

Download address

https://github.com/chaitin/rad

Basic use
Google browser should be installed in advance , To use this tool .

rad -t http://example.com
 When you need to log in manually 

rad -t http://example.com -wait-login
 Executing the above command will automatically disable headless browsing mode , Open a browser for manual login .  After logging in, click enter on the command line interface to continue crawling .

rad -t http://example.com -text-output vuln.txt
 The above command will climb to URL Output to vuln.txt in 

 Export complete request 
rad -t http://example.com -full-text-output result.txt

 The perfect syntax is as follows 
rad_windows_amd64.exe -t http://example.com -text-output vuln.txt  -wait-login

xray Scanner
It is a community version vulnerability scanning artifact extracted from the Changting Dongjian core engine ,
Support initiative 、 Passive multiple scanning modes , Own blind printing platform 、 Flexible definition of POC, Rich functions and simple calls ,
Support Windows / macOS / Linux Multiple operating systems , It can meet the automation of safety practitioners Web Vulnerability detection requirements .

Download address

https://github.com/chaitin/xray

Basic usage

Use the basic crawler to crawl and scan the links crawled by the crawler , I usually scan actively

 xray webscan --basic-crawler http://www.baidu.com   --html-output  1.html

Use HTTP Agent performs passive scanning , Browser proxy to xray, You can scan

  xray webscan --listen 127.0.0.1:7777 --html-output 2.html

Scan only a single url, Do not use crawlers

xray webscan --url http://example.com/?a=b --html-output 3.html

Manually specify the plug-in to run this time
In case of recognition , All built-in plug-ins will be enabled , You can use the following command to specify the plug-ins enabled for this scan .
The following specifications are injection plug-ins

xray webscan --plugins cmd-injection,sqldet --url http://example.com
xray webscan --plugins cmd-injection,sqldet --listen 127.0.0.1:7777

rad+xray Efficient scanning
rad High speed crawler agent to xray Realize fast scanning
Reptiles are xray Weaknesses , adopt rad You can achieve more efficient scanning
xray Enable agent monitoring

xray_windows_amd64.exe  webscan --listen 127.0.0.1:7777 --html-output proxy.html  

rad Climb the target , Proxy to xray On

rad_windows_amd64.exe  -t http://www.baidu.com  -http-proxy 127.0.0.1:7777   -wait-login