Seekerx is a command-line tool that facilitates scanning of domain names for specified projects. It can be used to identify potential subdomains and gather information about them..
Installation | Configuration | Usage | Example Usage
1- Get Subdomains and Subs of Subdomains
2- Filter Live subdomains (may get admin panels)
3- Check Subdomain Takeover
4- Collect all URLs
5- Collect all endpoints
6- Collect all Javascript files
7- Collect all Parameters
8- Filter all possible SSRF and XSS and LFI parameters
9- Collect all wordpress subdomains
10- Collect all package.json file to check Dependency confusion
11- Collect all Shodan IPs and Scan them
12- Collect other CMS (drupal , Joomla ,AEM) subdomains
13- Collect all Cpanel subdomains
14- Collect all Collect Jira subdomains
15- Collect all Grafana Subdomains
16- Scan For XSS
17- Scan Dependency confusion
18- Run Nuclei with Custom Nuclei Templates
19- Scan all wordpress subdomains using wpscan and custom wordpress scanner tool
20- Scan other CMS (drupal , Joomla ,AEM) subdomains
21- Scan JS files
22- Filter possible SSRF parameters
23- Google dorking
24- Github dorking
git clone https://github.com/mohamedabdelhady933/SeekerX.git
cd SeekerX
chmod +x install.sh
./install.sh
- 1- Add Shodan API Key (optional)
Set SHODAN_API_KEY=""
- 2- Just Check the following paths if they are right.
HOOK_HOME="$HOME/SeekerX/tools/hoOk"
Set HOOK_API_KEY=""
SECLISTS="/usr/share/seclists"
Nuclei_Templates_Path="$HOME/nuclei-templates"
- 3- Add Wordpress API key (optional)
WordPress_Api=""
chmod +x Seekerx.sh
List the help options
./Seekerx.sh --help
Usage: test.sh -p projectname -d domainfilepath [-o outputdir]
Options:
-p | --projectname : Specify the project name (Output Directory Name)
-d | --domainfile : Specify the path to the domain file (ex: domains.txt)
-o | --outputdir : Specify the path to the output directory (default is the current directory)
-m | --mode : The scan mode (either fast or deep). Default is fast.
-c | --check : Check if required tools are installed
-h | --help : Display this help message
Run
./SeekerX.sh -p projectname -d domainfilepath [-o outputdir] [-m mode] [-c] [-h]
To scan a project named "example" using a domain file "domains.txt" and store the output in the current directory, run the following command:
./SeekerX.sh -p example -d domain.txt
You can also specify an output directory using the -o option:
./SeekerX.sh -p example -d domain.txt -o /path/to/output/dir
To run a deep scan mode, use the -m option:
./SeekerX.sh -p example -d domain.txt -m deep
To check if the required tools are installed, use the -c option:
./SeekerX.sh -c
Seekerx.sh is released under the MIT License. Please see the LICENSE file for more details.
This tool is provided as-is without any warranties. Use it at your own risk. The authors and contributors of Seekerx.sh shall not be held liable for any misuse or damages caused by this tool.