Hack EVERY API! KiteRunner - Hacker Tools
ฝัง
- เผยแพร่เมื่อ 2 ส.ค. 2024
- 👨💻🛠️ In this week's episode of Hacker Tools, we will take a look at KiteRunner.
00:00 Introduction
00:15 Why do we need API enumeration?
00:40 What is KiteRunner?
01:40 Running KiteRunner
03:00 Checking out KiteRunner wordlists and bruteforces
06:15 Checking the results
07:00 Outro
---
📰 Check out the accompanying blog post here: blog.intigriti.com/2021/09/07...
🧑💻 Sign up and start hacking right now - go.intigriti.com/register
👾 Join our Discord - go.intigriti.com/discord
🎙️ This show is hosted by / pinkdraconian & / intigriti
👕 Do you want some Intigriti Swag? Check out swag.intigriti.com/
Very informative ❤
Glad it was helpful!
wow ... thanks for this.
Glad you enjoyed it!
What’s the difference of this one with gobuster for example ? What extra does this bring ?
We actually had someone ask this in our Discord as well. So feel free to check that out. Gobuster just bruteforces directories whereas KiteRunner uses the context it's in more.
Good!
Thanks!
Sir I found a endpoint name"admin.sign up" but when I visit this endpoint in a browser I found a empty page in which there are only 2 HTML tag and whole page is empty can you give me some idea how I move on forward
Lol
This is highly dependent on implementation so without further contextual information, there isn't much I can do I'm afraid ;)
the one simple scan is taking me just over 4hrs to complete am i doing something wrong?
It could be that the website is very slow, the wordlist large and perhaps your internet a bit slower as well.
Whats the difference between scan and brute?
# Use a dirsearch style wordlist with %EXT%
kr brute target.com/subapp/ -w dirsearch.txt -x 20 -j 1 -exml,asp,aspx,ashx -D
# You have your own wordlist but you want assetnote wordlists too
kr scan target.com -w routes.kite -A=apiroutes-210328:20000 -x 20 -j 1 --fail-status-codes 400,401,404,403,501,502,426,411
How to download wordlist
KiteRunner will do that for you!
Could you cover a waf detection tool
Do you have any examples of tools for that?
Wafwoof. But I'm not sure if it's the best one out there.
@@crusader_ bro wafw00f is used to detect waf technology behind web app
'kr' is not recognized as an internal or external command
Make sure the binary is in your PATH.
noice
Thanks!
" " or " "
get error The filename, directory name, or volume label syntax is incorrect
but type localhost:8080 to pass
Nice!
@@intigriti 😂