spike

module
v0.6.6 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 17, 2026 License: MIT

README

Some context

This project is something I've been building in my spare time. If you simply want to try it out, head to the Releases section, download the latest version, and run it directly.

If you're on a different operating system or CPU Arch, install it using Go tool chain:

go install github.com/ayuxsec/spike/cmd/spike@latest

You can email me at ayuxsec@proton.me if you need help with something or want to contribute.

Flow Chart

see pipeline.go

flowchart TD
    A[__root_domain__]

    A -->|wildcard? yes| B[subfinder]
    B --> C1["subfinder (passive)"]
    B --> C2["resub + dnsx (active / fuzz)"]

    C1 --> D["alterx + dnsx (permutate & refuzz)"]
    C2 --> D

    D --> E[httpx]

    A -->|wildcard? no| E

    A --> F1["gau (passive crawl)"]

    E --> F[cachex]
    E --> G["katana (active crawl)"]
    E --> H[nuclei-generic]

    G --> I[uro]
    F1 --> I

    I --> J[httpx]

    J --> K[nuclei-dast]

config

config example (Don't Use this for now. Generate a fresh one with --write-config. The project is still being developed, and keeping the README updated for every new config i add isn't very productive?)

tools:                                 # Tool configuration
    httpx:
        threads: 25                    # Number of concurrent httpx workers
        ports_to_scan:                 # Ports to probe for web services
            http: 80,8080,8000,8008,8888,3000,5000,9000,81,82,83,84,591,2082,2086,2095,10000
            https: 443,8443,9443,5001,3001,8001,8081,2083,2087,2096,10001,10443,10444
        screenshot: false              # Capture screenshots of discovered pages
        cmd_timeout_in_second: 900     # Max execution time

    subfinder:
        enabled: true              # Master switch: enable or disable the subfinder module entirely
        passive:
            enabled: true          # use pd subfinder tool and enum through passive sources only (no direct interaction with target)
            threads: 10            # Number of concurrent threads
            cmd_timeout_in_second: 1800   # Maximum time (in seconds) before a subfinder command is killed
    
        active:
            enabled: true          # Enable active subdomain enumeration (direct DNS probing)
            wordlist_mode: tiny    # Size of the nOkovo_subdomains wordlist used (tiny = faster, fewer guesses)
            dnsx_threads: 100      # Number of concurrent DNS resolution threads for active scanning
            cmd_timeout_in_second: 1800   # Maximum time (in seconds) before an active scan command is killed
    katana:
        enabled: true                 # Enable crawling
        threads: 10                   # Concurrent crawling threads
        crawl_depth: 3                # Maximum crawl depth
        parallelism_threads: 10       # Parallel browser workers
        headless: false               # Run browser in headless mode
        no_sandbox: false             # Disable browser sandbox
        cmd_timeout_in_second: 900    # Max execution time

    gau:
        enabled: true                 # Enable URL collection
        threads: 10                   # Concurrent workers
        cmd_timeout_in_second: 900    # Max execution time

    nuclei:
        threads: 25                   # Concurrent scan threads
        template_settings:
            generic: true             # Enable generic template set
            dast: true                # Enable DAST templates
            headless: false           # Run headless templates
        template_paths:
            generic:
                include:              # Template directories to include
                    - http/
                    - cloud/
                    - javascript/
                    - dns/
                    - ssl/
                    - network/
                    - http/cves/2024
                    - http/cves/2023
                    - http/cves/2022
                    - http/cves/2021
                    - http/cves/2020
                exclude:              # Template directories to exclude
                    - http/cves/
                exclude_severity:     # Templates to ignore by severity (comma seperated)
            dast:
                include:              # DAST template directories
                    - dast/
                exclude:              # Template directories to exclude
                    - ""
                exclude_severity: info # Templates to ignore by severity (comma seperated)
        cmd_timeout_in_second: 900    # Max execution time

    cachex:
        enabled: true                 # Enable cache poisoning testing
        threads: 10                   # Concurrent workers
        cmd_timeout_in_second: 900    # Max execution time

reporter:                            # Reporting configuration
    telegram:
        enabled: false               # Enable Telegram notifications
        bot_token: ""                # Telegram bot token
        chat_id: 0                   # Target chat ID
        request_timeout: 10          # Telegram API timeout

Directories

Path Synopsis
cmd
spike command
internal
app/spike/cmd
pkg/repl
repl is a command-line interface for interacting with the spike database.
 repl is a command-line interface for interacting with the spike database.
pkg/reporter
pkg/scanner/cli
This file contains tools related to subdomain discovery on domains.
 This file contains tools related to subdomain discovery on domains.
pkg/scanner/core
pkg/scanner/db
pkg
config
logger
spike
Package spike provides the main Spike application structure and functionality.
 Package spike provides the main Spike application structure and functionality.
version

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.