Aranea may be used as an additional OSINT tool for web application investigations, by crawling the links of the webapp or by examining the JavaScript files for likely useful data.
Clone the Repo:
git clone https://github.com/leddcode/Aranea
Install requirements:
pip3 install -r requirements.txt
usage: aranea.py [-h] -U URL -M MODE [-T THREADS] [-H HEADERS] [-S]
optional arguments:
-h, --help show this help message and exit
-U URL, --url URL Target URL
-M MODE, --mode MODE Available Modes: crawl, analysis
-T THREADS, --threads THREADS
Default configuration: 10 threads
-H HEADERS, --headers HEADERS
Should be a string as in the example:
"Authorization:Bearer ey..,Cookie:role=admin;"
-S, --strict For analysis mode: the URL will be parsed even if it
does not have a JS extension.
Crawling (all results are stored in the scans directory).
python3 aranea.py -U https://example.com -M crawl -T 100
Using analysis mode, locate and parse the file Main.js.
python3 aranea.py -U https://example.com -M analysis
In case Main.js was not found or if you want to analyze another JS file, specify its address in the URL parameter.
python3 aranea.py -U https://example.com/script.js -M analysis
Use the -S flag if the JS file does not have a .js extension.
python3 aranea.py -U https://example.com/script -M analysis -S
- Fork it (https://github.com/enotr0n/Aranea)
- Create your feature branch (
git checkout -b feature
) - Commit your changes (
git commit -am 'Add some feature'
) - Push to the branch (
git push origin feature
) - Create a new Pull Request