{"id":13456984,"url":"https://github.com/h4r5h1t/webcopilot","last_synced_at":"2025-05-16T01:06:40.423Z","repository":{"id":39407488,"uuid":"401115811","full_name":"h4r5h1t/webcopilot","owner":"h4r5h1t","description":"An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.","archived":false,"fork":false,"pushed_at":"2024-07-18T14:44:09.000Z","size":87,"stargazers_count":1193,"open_issues_count":17,"forks_count":198,"subscribers_count":12,"default_branch":"main","last_synced_at":"2025-04-08T12:04:41.670Z","etag":null,"topics":["bug-bounty","bugbounty","enumeration","recon","reconnaissance"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/h4r5h1t.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":"h4r5h1t","custom":["https://www.paypal.com/paypalme/h4r5h1t"]}},"created_at":"2021-08-29T18:37:49.000Z","updated_at":"2025-04-08T07:19:02.000Z","dependencies_parsed_at":"2024-02-03T00:28:35.823Z","dependency_job_id":"6d3290f4-e268-4dee-9e74-b7217a27f812","html_url":"https://github.com/h4r5h1t/webcopilot","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/h4r5h1t%2Fwebcopilot","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/h4r5h1t%2Fwebcopilot/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/h4r5h1t%2Fwebcopilot/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/h4r5h1t%2Fwebcopilot/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/h4r5h1t","download_url":"https://codeload.github.com/h4r5h1t/webcopilot/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254448579,"owners_count":22072764,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bug-bounty","bugbounty","enumeration","recon","reconnaissance"],"created_at":"2024-07-31T08:01:31.344Z","updated_at":"2025-05-16T01:06:35.414Z","avatar_url":"https://github.com/h4r5h1t.png","language":"Shell","funding_links":["https://github.com/sponsors/h4r5h1t","https://www.paypal.com/paypalme/h4r5h1t"],"categories":["bugbounty","Shell","[](#table-of-contents) Table of contents"],"sub_categories":["[](#domainip-investigation)Domain/IP investigation"],"readme":"\u003ch1 align=\"center\"\u003e\u003ca href=\"https://github.com/h4r5h1t/webcopilot/\"\u003eWebCopilot\u003c/a\u003e\u003c/h1\u003e\n\u003ch4 align=\"center\"\u003eAn automation tool that enumerate subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.\u003c/h4\u003e\n\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://twitter.com/h4r5h1t_hrs\"\u003e\u003cimg src=\"https://img.shields.io/twitter/follow/h4r5h1t_hrs?style=social\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/h4r5h1t?tab=followers\"\u003e\u003cimg src=\"https://img.shields.io/github/followers/h4r5h1t?style=social\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/h4r5h1t/webcopilot/issues\"\u003e\u003cimg src=\"https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/h4r5h1t/webcopilot/blob/master/LICENSE\"\u003e\u003cimg src=\"https://img.shields.io/badge/License-MIT-yellow.svg\"\u003e\u003c/a\u003e\n\u003ca href=\"#\"\u003e\u003cimg src=\"https://img.shields.io/badge/Made%20with-Bash-1f425f.svg\"\u003e\u003c/a\u003e\n\u003ca href=\"#\"\u003e\u003cimg src=\"https://madewithlove.org.in/badge.svg\"\u003e\u003c/a\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"#features\"\u003eFeatures\u003c/a\u003e •\n  \u003ca href=\"#installing-webCopilot\"\u003eInstallation\u003c/a\u003e •\n  \u003ca href=\"#usage\"\u003eUsage\u003c/a\u003e •\n  \u003ca href=\"#running-webcopilot\"\u003eWebCopilot\u003c/a\u003e •\n  \u003ca href=\"#tools-used\"\u003eTools Used\u003c/a\u003e •\n  \u003ca href=\"#acknowledgement\"\u003eAcknowledgement\u003c/a\u003e\n\u003c/p\u003e\n\n---\n\n**WebCopilot** is an automation tool designed to enumerate subdomains of the target and detect bugs using different open-source tools.\n\nThe script first enumerate all the subdomains of the given target domain using assetfinder, sublister, subfinder, amass, findomain, hackertarget, riddler and crt then do active subdomain enumeration using gobuster from SecLists wordlist then filters out all the live subdomains using dnsx then it extract titles of the subdomains using httpx \u0026 scans for subdomain takeover using subjack. Then it uses gau/gauplus, waybackurls, or waymore to crawl all the endpoints of the given subdomains then it use gf patterns to filters out xss, lfi, ssrf, sqli, open redirect \u0026 rce parameters from that given subdomains, and then it scans for vulnerabilities on the subdomains using different open-source tools (like kxss, dalfox, openredirex, nuclei, etc). Then it'll print out the result of the scan and save all the output in a specified directory. \n\n# Features\n\n- Subdomain Enumeration using [assetfinder](https://github.com/tomnomnom/assetfinder), [SUBLIST3R_V2.0](https://github.com/hxlxmjxbbxs/SUBLIST3R_V2.0), [subfinder](https://github.com/projectdiscovery/subfinder), [amass](https://github.com/OWASP/Amass), [findomain](https://github.com/Findomain/Findomain), etc.\n- Active Subdomain Enumeration using [gobuster](https://github.com/OJ/gobuster) \u0026 [amass](https://github.com/OWASP/Amass) from [SecLists/DNS](https://github.com/danielmiessler/SecLists/tree/master/Discovery/DNS) wordlist.\n- Extract titles and take screenshots of live subdomains using [aquatone](https://github.com/michenriksen/aquatone) \u0026 [httpx](https://github.com/projectdiscovery/httpx).\n- Crawl all the endpoints of the subdomains using [waymore](https://github.com/xnl-h4ck3r/waymore) and filter out XSS, SQLi, SSRF, etc parameters using [gf patterns](https://github.com/tomnomnom/gf).\n- Run different open-source tools (like [dalfox](https://github.com/hahwul/dalfox), [nuclei](https://github.com/projectdiscovery/nuclei), [sqlmap](https://github.com/sqlmapproject/sqlmap), etc) to search for vulnerabilities on these parameters and then save all the outputs in the folder.\n\n\n# Usage\n```bash\ng!2m0:~ webcopilot -h\n```\n\n```js                    \n                                ──────▄▀▄─────▄▀▄\n                                ─────▄█░░▀▀▀▀▀░░█▄\n                                ─▄▄──█░░░░░░░░░░░█──▄▄\n                                █▄▄█─█░░▀░░┬░░▀░░█─█▄▄█\n ██╗░░░░░░░██╗███████╗██████╗░░█████╗░░█████╗░██████╗░██╗██╗░░░░░░█████╗░████████╗\n░██║░░██╗░░██║██╔════╝██╔══██╗██╔══██╗██╔══██╗██╔══██╗██║██║░░░░░██╔══██╗╚══██╔══╝\n░╚██╗████╗██╔╝█████╗░░██████╦╝██║░░╚═╝██║░░██║██████╔╝██║██║░░░░░██║░░██║░░░██║░░░\n░░████╔═████║░██╔══╝░░██╔══██╗██║░░██╗██║░░██║██╔═══╝░██║██║░░░░░██║░░██║░░░██║░░░\n░░╚██╔╝░╚██╔╝░███████╗██████╦╝╚█████╔╝╚█████╔╝██║░░░░░██║███████╗╚█████╔╝░░░██║░░░\n░░░╚═╝░░░╚═╝░░╚══════╝╚═════╝░░╚════╝░░╚════╝░╚═╝░░░░░╚═╝╚══════╝░╚════╝░░░░╚═╝░░░\n                                                                [●] Version: 2.0.0\n                                                                [●] @h4r5h1t | G!2m0\n\n\n[❌] Warning: Use with caution. You are responsible for your own actions.\n[❌] Developers assume no liability and are not responsible for any misuse or damage cause by this tool.\n\n\nUsage:\nwebcopilot -d \u003ctarget\u003e\nwebcopilot -d \u003ctarget\u003e -a\nwebcopilot [-d target] [-o output destination] [-t threads] [-b blind server URL] [-x exclude domains] [-f subdomains file] [-a] [-v] [-h]\nFlags:\n  -d        Add your target [Optional]\n  -o        To save outputs in folder [Default: webcopilot-\u003ctimestamp\u003e]\n  -t        Number of threads [Default: 100]\n  -b        Add your server for BXSS [Default: False]\n  -x        Exclude out of scope domains [Default: False]\n  -f        Specify a file containing subdomains, this will skip subdomain enumeration [Optional]\n  -a        Run all Enumeration by default it will run only subdomain enumeration [Default: False][Time Consuming]\n  -v        Show version of the tool\n  -h        Show this help message\n\nExample:./webcopilot  -d domain.com -a -o domain -t 333 -x exclude.txt -b testServer.oast.fun\nYou can use  https://app.interactsh.com/ to get your server\n```\n# Installing WebCopilot\n\nWebCopilot requires **git** to install successfully. Run the following command as a **root** to install webcopilot \n\n```bash\ngit clone https://github.com/h4r5h1t/webcopilot \u0026\u0026 cd webcopilot/ \u0026\u0026 chmod +x webcopilot install.sh \u0026\u0026 mv webcopilot /usr/bin/ \u0026\u0026 ./install.sh\n```\n```js\n[*] Installing Tools\n[*] Creating Directories\n[*] Installing Dependencies and Checking is Installed or Not\n[*] git is already installed\n[*] python3 is already installed\n[*] python3-pip is already installed\n[*] ruby is already installed\n[*] golang-go is already installed\n[*] snapd could not be found [*] Installing snapd\n[*] snapd is not installed successfully, Please install it manually\n[*] cmake is already installed\n[*] jq is already installed\n[*] gobuster is already installed\n[*] chromium is already installed\n[*] parallel is already installed\n[*] Installing Python Tools\n[*] Sublist3r could not be found [*] Installing Sublist3r\n[*] Sublist3r is installed successfully\n[*] sqlmap is already installed\n[*] urldedupe is already installed\n[*] openredirex is already installed\n[*] waymore is already installed\n[*] findomain is already installed\n[*] uro is already installed\n[*] Installing Wordlists and Payloads\n[*] Skipping payloads/lfi.txt, already exists.\n[*] Skipping resolvers.txt, already exists.\n[*] Skipping subdomains.txt, already exists.\n[*] Skipping fuzz.txt, already exists.\n[*] Skipping dicc.txt, already exists.\n[*] Skipping big.txt, already exists.\n[*] Skipping dns.txt, already exists.\n[*] Installing Go Tools\n[*] anew is already installed\n[*] gf is already installed\n[*] aquatone could not be found [*] Installing aquatone\n[*] aquatone is not installed successfully, Please install it manually\n[*] assetfinder is already installed\n[*] gau is already installed\n[*] waybackurls is already installed\n[*] httpx could not be found [*] Installing httpx\n[*] httpx is not installed successfully, Please install it manually\n[*] amass could not be found [*] Installing amass\n[*] amass is not installed successfully, Please install it manually\n[*] kxss is already installed\n[*] subjack is already installed\n[*] qsreplace is already installed\n[*] dnsx could not be found [*] Installing dnsx\n[*] dnsx is not installed successfully, Please install it manually\n[*] dalfox is already installed\n[*] crlfuzz is already installed\n[*] nuclei could not be found [*] Installing nuclei\n[*] nuclei is not installed successfully, Please install it manually\n[*] subfinder could not be found [*] Installing subfinder\n[*] subfinder is not installed successfully, Please install it manually\n[*] Configuring Tools and Setting Up Environment\n[*] All Tools are installed successfully\n```\n\n### Tools Used:\n\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://github.com/projectdiscovery/subfinder\"\u003eSubFinder\u003c/a\u003e • \n\u003ca href=\"https://github.com/aboul3la/Sublist3r\"\u003eSublist3r\u003c/a\u003e •\n\u003ca href=\"https://github.com/Findomain/Findomain\"\u003eFindomain\u003c/a\u003e •\n\u003ca href=\"https://github.com/tomnomnom/gf\"\u003egf\u003c/a\u003e •\n\u003ca href=\"https://github.com/devanshbatham/OpenRedireX\"\u003eOpenRedireX\u003c/a\u003e •\n\u003ca href=\"https://github.com/projectdiscovery/dnsx\"\u003ednsx\u003c/a\u003e •\n\u003ca href=\"https://github.com/sqlmapproject/sqlmap\"\u003esqlmap\u003c/a\u003e •\n\u003ca href=\"https://github.com/OJ/gobuster\"\u003egobuster\u003c/a\u003e •\n\u003ca href=\"https://github.com/tomnomnom/assetfinder\"\u003eassetfinder\u003c/a\u003e •\n\u003ca href=\"https://github.com/projectdiscovery/httpx\"\u003ehttpx\u003c/a\u003e •\n\u003ca href=\"https://github.com/Emoe/kxss\"\u003ekxss\u003c/a\u003e •\n\u003ca href=\"https://github.com/tomnomnom/qsreplace\"\u003eqsreplace\u003c/a\u003e •\n\u003ca href=\"https://github.com/projectdiscovery/nuclei\"\u003eNuclei\u003c/a\u003e •\n\u003ca href=\"https://github.com/hahwul/dalfox\"\u003edalfox\u003c/a\u003e •\n\u003ca href=\"https://github.com/tomnomnom/anew\"\u003eanew\u003c/a\u003e •\n\u003ca href=\"https://github.com/stedolan/jq\"\u003ejq\u003c/a\u003e •\n\u003ca href=\"https://github.com/michenriksen/aquatone\"\u003eaquatone\u003c/a\u003e •\n\u003ca href=\"https://github.com/ameenmaali/urldedupe\"\u003eurldedupe\u003c/a\u003e •\n\u003ca href=\"https://github.com/OWASP/Amass\"\u003eAmass\u003c/a\u003e •\n\u003ca href=\"https://github.com/bp0lr/gauplus\"\u003egauplus\u003c/a\u003e •\n\u003ca href=\"https://github.com/tomnomnom/waybackurls\"\u003ewaybackurls\u003c/a\u003e •\n\u003ca href=\"https://github.com/dwisiswant0/crlfuzz\"\u003ecrlfuzz\u003c/a\u003e •\n\u003ca href=\"https://github.com/lc/gau\"\u003egau\u003c/a\u003e •\n\u003ca href=\"https://github.com/xnl-h4ck3r/waymore\"\u003ewaymore\u003c/a\u003e •\n\u003ca href=\"https://github.com/hxlxmjxbbxs/SUBLIST3R_V2.0\"\u003eSUBLIST3R_V2.0\u003c/a\u003e •\n\u003ca href=\"https://github.com/s0md3v/uro\"\u003euro\u003c/a\u003e\n\u003c/p\u003e\n\n## Running WebCopilot\nTo run the tool on a target, just use the following command.\n```bash\ng!2m0:~ webcopilot -d example.com\n```\nThe `-o` command can be used to specify an output dir.\n```bash\ng!2m0:~ webcopilot -d example.com -o example\n```\n\u003c!-- The `-s` command can be used for only subdomain enumerations (Active + Passive and also get title \u0026 screenshots). --\u003e\nThe `-a` command can be used for running all enumerations (Subdomain Enumeration + Vulnerabilities Scanning).\n```bash\ng!2m0:~ webcopilot -d example.com -o example -a\n```\nThe `-t` command can be used to add threads to your scan for faster result.\n```bash\ng!2m0:~ webcopilot -d example.com -o example -t 333 \n```\nThe `-b` command can be used for blind xss (OOB), you can get your server from [interact](https://app.interactsh.com/)\n```bash \ng!2m0:~ webcopilot -d example.com -o example -t 333 -b eeuyhzfnsezrraragtd70ex5oc2hsw.oast.fun\n```\nThe `-x` command can be used to exclude out of scope domains.\n```bash\ng!2m0:~ echo out.example.com \u003e excludeDomain.txt\ng!2m0:~ webcopilot -d example.com -o example -t 333 -x excludeDomain.txt -b eeuyhzfnsezrraragtd70ex5oc2hsw.oast.fun\n```\nThe `-f` command can be used to pass file containing subdomains (using this skip Active + Passive Subdomain enumeration)\n```bash\ng!2m0:~ webcopilot -d example.com -o example -f /home/ubuntu/subdomains.txt -a\n```\n## Example\nDefault options looks like this:\n```bash\ng!2m0:~ webcopilot -d http://testphp.vulnweb.com/ -a -b eeuyhzfpwgnsezrraragtd70ex5oc2hsw.oast.fun\n```\n\n```js\n                                ──────▄▀▄─────▄▀▄\n                                ─────▄█░░▀▀▀▀▀░░█▄\n                                ─▄▄──█░░░░░░░░░░░█──▄▄\n                                █▄▄█─█░░▀░░┬░░▀░░█─█▄▄█\n ██╗░░░░░░░██╗███████╗██████╗░░█████╗░░█████╗░██████╗░██╗██╗░░░░░░█████╗░████████╗\n░██║░░██╗░░██║██╔════╝██╔══██╗██╔══██╗██╔══██╗██╔══██╗██║██║░░░░░██╔══██╗╚══██╔══╝\n░╚██╗████╗██╔╝█████╗░░██████╦╝██║░░╚═╝██║░░██║██████╔╝██║██║░░░░░██║░░██║░░░██║░░░\n░░████╔═████║░██╔══╝░░██╔══██╗██║░░██╗██║░░██║██╔═══╝░██║██║░░░░░██║░░██║░░░██║░░░\n░░╚██╔╝░╚██╔╝░███████╗██████╦╝╚█████╔╝╚█████╔╝██║░░░░░██║███████╗╚█████╔╝░░░██║░░░\n░░░╚═╝░░░╚═╝░░╚══════╝╚═════╝░░╚════╝░░╚════╝░╚═╝░░░░░╚═╝╚══════╝░╚════╝░░░░╚═╝░░░\n                                                                [●] Version: 2.0.0\n                                                                [●] @h4r5h1t | G!2m0\n\n\n[❌] Warning: Use with caution. You are responsible for your own actions.\n[❌] Developers assume no liability and are not responsible for any misuse or damage cause by this tool.\n\n\nTarget:  http://testphp.vulnweb.com/\nOutput:  /home/ubuntu/github/webcopilot/webcopilot-1714304809\nThreads: 100\nServer:  eeuyhzfpwgnsezdyeragtd70ex5oc2hsw.oast.fun\nExclude: False\nMode:    Running all Enumeration\nTime:    28-04-2024 17:16:49\n\n[!] Please wait while scanning...\n\n[●] Passive Subdomain Scanning is in progress:\n\n[●] Subdomain Scanned  -  [assetfinder✔]                 Subdomain Found: 0\n[●] Subdomain Scanned  -  [SUBLIST3R_V2.0✔]              Subdomain Found: 0\n[●] Subdomain Scanned  -  [subfinder✔]                   Subdomain Found: 1\n[●] Subdomain Scanned  -  [amass✔]                       Subdomain Found: 0\n[●] Subdomain Scanned  -  [findomain✔]                   Subdomain Found: 1\n\n[●] Subdomain Scanned  -  [crt.sh✔]                      Subdomain Found: 0\n[●] Subdomain Scanned  -  [hackertarget✔]                Subdomain Found: 1\n[●] Subdomain Scanned  -  [riddler✔]                     Subdomain Found: 0\n[●] Subdomain Scanned  -  [certspotter✔]                 Subdomain Found: 0\n\n[●] Active Subdomain Scanning is in progress:\n[!] Please be patient. This may take a while...\n[●] Active Subdomain Scanned  -  [gobuster✔]             Subdomain Found: 0\n[●] Active Subdomain Scanned  -  [amass✔]                Subdomain Found: 0\n\n[●] Subdomain Filtering: Filtering Alive subdomains\n[●] Subdomain Filtering  -   Filtering alive subdomains is completed.    Check: /subdomains/alivesub.txt\n[●] Subdomain Scanning: Getting titles of valid subdomains\n[●] Visual inspection of Subdomains is completed.        Check: /subdomains/aquatone/\n\n[●] Subdomain Enumeration Completed.    Total: 1 | Alive: 1\n\n[●] Endpoints Scanning Completed.  Total: 0\n[●] Vulnerabilities Scanning is in progress: Getting all vulnerabilities of \n[●] Vulnerabilities Scanning is in progress:\n\n[●] Vulnerabilities Scanned  -  [XSS✔]                   Found: 0\n[●] Vulnerabilities Scanned  -  [SQLi✔]                  Found: 0\n[●] Vulnerabilities Scanned  -  [LFI✔]                   Found: 0\n[●] Vulnerabilities Scanned  -  [CRLF✔]                  Found: 0\n[●] Vulnerabilities Scanned  -  [SSRF✔]                  Found: 0\n[●] Vulnerabilities Scanned  -  [Open redirect✔]         Found: 0\n[●] Vulnerabilities Scanned  -  [Subdomain Takeover✔]    Found: 0\n[●] Vulnerabilities Scanned  -  [Nuclie✔]                Found: 0\n[●] Vulnerabilities Scanning Completed.    Check: /vulnerabilities/\n\n\n▒█▀▀█ █▀▀ █▀▀ █░░█ █░░ ▀▀█▀▀\n▒█▄▄▀ █▀▀ ▀▀█ █░░█ █░░ ░░█░░\n▒█░▒█ ▀▀▀ ▀▀▀ ░▀▀▀ ▀▀▀ ░░▀░░\n\n[+] Subdomains of http://testphp.vulnweb.com/\n[+] Subdomains Found: 1\n[+] Subdomains Alive: 1\n[+] Endpoints: 0\n[+] XSS: 0\n[+] SQLi: 0\n[+] Open Redirect: 0\n[+] SSRF: 0\n[+] CRLF: 0\n[+] LFI: 0\n[+] Subdomain Takeover: 0\n[+] Nuclei: 0\n```\n---\n\n### Acknowledgement\nWebCopilot is inspired from [Garud](https://github.com/R0X4R/Garud) \u0026 [Pinaak](https://github.com/R0X4R/Pinaak) by [ROX4R](https://github.com/R0X4R/).  \n\n#### Thanks to the authors of the tools \u0026 wordlists used in this script.\n\n[@aboul3la](https://github.com/aboul3la) [@tomnomnom](https://github.com/tomnomnom) [@lc](https://github.com/lc) [@hahwul](https://github.com/hahwul) [@projectdiscovery](https://github.com/projectdiscovery) [@maurosoria](https://github.com/maurosoria) [@shelld3v](https://github.com/shelld3v) [@devanshbatham](https://github.com/devanshbatham) [@michenriksen](https://github.com/michenriksen) [@defparam](https://github.com/defparam/) [@projectdiscovery](https://github.com/projectdiscovery) [@bp0lr](https://github.com/bp0lr/) [@ameenmaali](https://github.com/ameenmaali) [@sqlmapproject](https://github.com/sqlmapproject/sqlmap) [@dwisiswant0](https://github.com/dwisiswant0) [@OWASP](https://github.com/OWASP/) [@OJ](https://github.com/OJ/) [@Findomain](https://github.com/Findomain/Findomain) [@danielmiessler](https://github.com/danielmiessler) [@1ndianl33t](https://github.com/1ndianl33t) [@ROX4R](https://github.com/R0X4R/) [@xnl-h4ck3r](https://github.com/xnl-h4ck3r/) [@hxlxmjxbbxs](https://github.com/hxlxmjxbbxs/) [@s0md3v](https://github.com/s0md3v/)\n\n\u003ctable\u003e\n\u003ctd\u003e\n\u003cb\u003eWarning:\u003c/b\u003e Developers assume no liability and are not responsible for any misuse or damage cause by this tool. So, please se with caution because you are responsible for your own actions.\n\u003c/td\u003e\n\u003c/table\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fh4r5h1t%2Fwebcopilot","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fh4r5h1t%2Fwebcopilot","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fh4r5h1t%2Fwebcopilot/lists"}