The idea behind waymore is to find even more links from the Wayback Machine than other existing tools.
The biggest difference between waymore and other tools is that it can also download the archived responses for URLs on wayback machine so that you can then search these for even more links, developer comments, extra parameters, etc. etc. 👉
Also, other tools do not currenrtly deal with the rate limiting now in place by the sources, and will often just stop with incomplete results and not let you know they are incomplete.
Anyone who does bug bounty will have likely used the amazing waybackurls by @TomNomNoms. This tool gets URLs from web.archive.org and additional links (if any) from one of the index collections on index.commoncrawl.org.
You would have also likely used the amazing gau by @hacker_ which also finds URL’s from wayback archive, Common Crawl, but also from Alien Vault and URLScan.
Now waymore gets URL’s from ALL of those sources too (with ability to filter more to get what you want):
👉 It’s a point that many seem to miss, so I’ll just add it again 🙂 … The biggest difference between waymore and other tools is that it can also download the archived responses for URLs on wayback machine so that you can then search these for even more links, developer comments, extra parameters, etc. etc.
👉 PLEASE READ ALL OF THE INFORMATION ON THIS PAGE TO MAKE THE MOST OF THIS TOOL, AND ESPECIALLY BEFORE RAISING ANY ISSUES 🤘
👉 THIS TOOL CAN BE VERY SLOW, BUT IT IS MEANT FOR COVERAGE, NOT SPEED
⚠️ A common mistake that is made is passing a file of subdomains to get everything for a domain. DON’T DO IT! Just pass the domain only to get all subs for that domain. It will be SO much quicker, and you won’t miss anything.
NOTE: If you already have a config.yml
file, it will not be overwritten. The file config.yml.NEW
will be created in the same directory. If you need the new config, remove config.yml
and rename config.yml.NEW
back to config.yml
.
waymore
supports Python 3.
Install waymore
in default (global) python environment.
pip install waymore
OR
pip install git+https://github.com/xnl-h4ck3r/waymore.git -v
You can upgrade with
pip install --upgrade waymore
Quick setup in isolated python environment using pipx
pipx install git+https://github.com/xnl-h4ck3r/waymore.git
For more information click here.
bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…