Gori is a tiny and rapid config file scanner. Gori allows to do concurrent scans regarding .git, .env, .travis.yml, config.yml files within GET request.
- go > 1.13
Optional:
go mod init
- Clone the repo
git clone https://github.com/GetSource1234/gori.git
- Setup go modules (optional if you see build errors)
go mod init
go run gori.go --urlPath=<PATH_TO_DOMAIN_LIST>Supported flags: urlPath, verbose, tor. Domain list: simple .text file with whitespace as a separator.
Run tests:
go test ./...#Note!!! Some false positive results may occur, double check manually if needed.
#Note!!! Make sure if tor socks proxy is running if you use --tor flag. Tor Security note: https://2019.www.torproject.org/docs/faq.html.en#TBBSocksPort
Distributed under the MIT License. See LICENSE for more information.
Usage of Gori for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.