Example Usage

blackwidow -u https://target.com - crawl target.com with 3 levels of depth.
blackwidow -d target.com -l 5 -v y - crawl the domain: target.com with 5 levels of depth with verbose logging enabled.
blackwidow -d target.com -l 5 -c 'test=test' - crawl the domain: target.com with 5 levels of depth using the cookie 'test=test'
blackwidow -d target.com -l 5 -s y -v y - crawl the domain: target.com with 5 levels of depth and fuzz all unique parameters for OWASP vulnerabilities with verbose logging on.
injectx.py -u https://test.com/uers.php?user=1&admin=true -v y - Fuzz all GET parameters for common OWASP vulnerabilities with verbose logging enabled.

See also

public-skills-builder

Free

Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln c…

Netexec (nxc)

Open Source Kali

The maintained fork and successor to CrackMapExec. Network service exploitation Swiss army knife for…

ExploitDB / SearchSploit

Open Source Kali

Archive of public exploits and vulnerable software maintained by Offensive Security. SearchSploit pr…

Certipy

Open Source

Offensive tool for Active Directory Certificate Services (AD CS) enumeration and abuse. Finds and ex…

Red-Team-Rust

Open Source

A beginner-friendly collection of Rust notes focused on Red Team Tooling • Malware Development • Sys…

Nishang

Open Source Kali

Framework and collection of PowerShell scripts and payloads for offensive security and post-exploita…