Skip to content
/ endpointchecker Public

Recon tool to check for specific endpoints appended to an input domainlist

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hitem/endpointchecker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
wordlist
wordlist
 
 
README.md
README.md
 
 
endpointchecker.py
endpointchecker.py
 
 

Repository files navigation

Endpointchecker

Endpointchecker is a Python script designed to check for specific endpoints on provided URLs. This tool enhances your reconnaissance by automating the process of verifying endpoint availability across multiple URLs. Ive also added a basic wordlist for apiendpoints located in /wordlist/.

Example:

Input URL file: http://example.com/
Input Endpoint wordlist: api/v1
Url to test: http://example.com/api/v1

Features

  • Multi-threaded for fast execution.
  • Customizable timeout, retries, number of concurrent workers, and batch size.
  • Outputs results to a file in real-time with status code prefixes.
  • Handles SSL warnings.
  • Accepts URL lists with or without https:// prefix.
  • Allows filtering and saving of specific status codes using the -s option.
  • Final output is sorted, grouped by status codes, and duplicates are removed

image

Installation

To run this script, you need to have Python 3 and the required packages installed. You can install the necessary packages using:

> pip install aiohttp colorama urllib3

Usage

> python3 endpointchecker.py [OPTIONS]
> python3 endpointchecker.py -h [--help]

Options

  • -u, --urls: Path to the URL list file (required).
  • -e, --endpoints: Path to the endpoint list file (required).
  • -o, --output: Output file for results (required).
  • -t, --timeout: Timeout for each request in seconds (default: 5).
  • -w, --workers: Number of concurrent threads (default: 10).
  • -r, --retries: Number of retries for each request (default: 3).
  • -b, --batchsize: Number of requests per batch (default: 1000).
  • -s, --statuscodes: Which statuscodes to look for (default: 200,500).

Examples

Check endpoints from a URL list:

> python3 endpointchecker.py -u urllist.txt -e endpointlist.txt -o output.txt -t 5 -w 10 -r 3
> python3 endpointchecker.py -u urllist.txt -e endpointlist.txt -o output.txt -t 2 -w 60 -r 2 -b 250
> python3 endpointchecker.py -u urllist.txt -e endpointlist.txt -o output.txt -t 4 -w 50 -r 1 -b 777 -s 200,301,302,500,501

Author

Disclaimer

Use this script with caution. Disabling SSL warnings and making numerous requests to external servers may have unintended consequences. Always have permission to test the endpoints you are checking.

Feel free to contribute or raise issues on GitHub.

Happy Recon!

About

Recon tool to check for specific endpoints appended to an input domainlist

Topics

reconnaissance

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages