Example Usage
autoar domain run -d <domain> Full end-to-end workflow: subdomains → live hosts → ports →
[--skip-ffuf] tech → DNS → S3 → nuclei → JS → URLs → GF → backup → misconfig
autoar subdomain run -s <subdomain> Focused deep-dive on a single subdomain:
live check → ports → JS → vuln scan → nuclei
autoar lite run -d <domain> Lighter workflow: livehosts → reflection → JS → CNAME → DNS → misconfig
[--skip-js] Skip JavaScript scanning
[--phase-timeout] Set default phase timeout in seconds
[--timeout-<phase>] Specific overrides (e.g. --timeout-livehosts)
autoar fastlook run -d <domain> Quick recon: subdomains → live hosts → URLs/JS collection
autoar asr -d <domain> High-depth reconnaissance (ASR Modes)
[-mode 1-5] Recon mode (default: 5)
[-t <threads>] Number of threads
See also
ffuf
Open Source
Kali
Fast web fuzzer written in Go. Supports directory discovery, parameter fuzzing, virtual host discove…
WADComs.github.io
Open Source
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and the…
enum4linux-ng
Open Source
Kali
Next-generation rewrite of enum4linux with YAML/JSON output, improved reliability, and additional ch…
cbrutekrag
Open Source
Penetration tests on SSH servers using brute force or dictionary attacks. Written in C.…
agent-audit
Open Source
Static security scanner for LLM agents — prompt injection, MCP config auditing, taint analysis. 49 r…
brutas
Free
Wordlists handcrafted (and automated) with ♥…