{"id":17347785,"url":"https://github.com/r0x4r/scvault","last_synced_at":"2025-09-02T23:36:34.030Z","repository":{"id":112595227,"uuid":"371330482","full_name":"R0X4R/scvault","owner":"R0X4R","description":"Custom scripts for directory fuzzing, subdomain enumeration, and more.","archived":false,"fork":false,"pushed_at":"2021-09-26T10:06:30.000Z","size":43,"stargazers_count":43,"open_issues_count":1,"forks_count":12,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-28T09:03:36.692Z","etag":null,"topics":["automation","bash-script","bug-bounty","bug-bounty-hunters","bugbounty","directory-busting","ffuf","fuzzing","infosec","interlace"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/R0X4R.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null},"funding":{"ko_fi":"r0x4r"}},"created_at":"2021-05-27T10:14:31.000Z","updated_at":"2024-06-06T13:51:35.000Z","dependencies_parsed_at":null,"dependency_job_id":"3b348a07-6016-45eb-9dab-4f64884b4b77","html_url":"https://github.com/R0X4R/scvault","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R0X4R%2Fscvault","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R0X4R%2Fscvault/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R0X4R%2Fscvault/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R0X4R%2Fscvault/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/R0X4R","download_url":"https://codeload.github.com/R0X4R/scvault/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248960718,"owners_count":21189987,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["automation","bash-script","bug-bounty","bug-bounty-hunters","bugbounty","directory-busting","ffuf","fuzzing","infosec","interlace"],"created_at":"2024-10-15T16:50:04.168Z","updated_at":"2025-04-14T20:46:08.020Z","avatar_url":"https://github.com/R0X4R.png","language":"Shell","funding_links":["https://ko-fi.com/r0x4r","https://ko-fi.com/i/IE1E74SK2W"],"categories":[],"sub_categories":[],"readme":"\u003ch1 align=\"center\"\u003e\n  \u003cbr/\u003e\n\u003cimg src=\".github/logo.png\" width=\"50%\"\u003e\n\u003c/h1\u003e\n\u003ch4 align=\"center\"\u003eCustom scripts for directory fuzzing, subdomain enumeration and more.\u003c/h4\u003e\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://ko-fi.com/i/IE1E74SK2W\"\u003e\u003cimg src=\"https://img.shields.io/badge/buy%20me%20a%20ko--fi%20-donate-red\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/R0X4R/Fuzzy/issues\"\u003e\u003cimg src=\"https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat\"\u003e\u003c/a\u003e\n\u003ca href=\"https://twitter.com/R0X4R/\"\u003e\u003cimg src=\"https://img.shields.io/badge/twitter-%40R0X4R-blue.svg\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/R0X4R?tab=followers\"\u003e\u003cimg src=\"https://img.shields.io/badge/github-%40R0X4R-orange\"\u003e\u003c/a\u003e\n\u003c/p\u003e\n\n---\n\n**Installation** (make sure you have **go** installed)\n```bash\n$ sudo apt install -y jq golang-go\n$ go get -u github.com/ffuf/ffuf\n$ go get -u github.com/tomnomnom/anew\n$ go install github.com/OJ/gobuster/v3@latest\n$ wget https://github.com/OWASP/Amass/releases/download/v3.13.4/amass_linux_amd64.zip -O amass.zip \u0026\u0026 unzip amass.zip \u0026\u0026 mv amass_linux_amd64/amass /usr/bin/ \u0026\u0026 rm -rf amass_linux_amd64/\n$ git clone https://github.com/R0X4R/scvault.git \u0026\u0026 chmod +x scvault/*.sh \u0026\u0026 mv scvault/*.sh /usr/bin/\n```\n\n### Usage\n\nDirectory fuzzing:\n```bash\n$ subfinder -d target.tld -all -silent -threads 200 | httpx -silent -threads 200 | anew -q subdomains.txt\n$ interlace -tL subdomains.txt -threads 10 -c \"dirfuzz.sh _target_\" --silent\n```\n\nSubdomain bruteforce:\n```bash\n$ subenum.sh target.tld\n```\n\n\n### Donate\n\u003ca href=\"https://ko-fi.com/i/IE1E74SK2W\"\u003e\u003cimg src=\"https://ko-fi.com/img/githubbutton_sm.svg\"\u003e\u003c/a\u003e\n\n### Tools used\n\u003cp align=\"left\"\u003e\n\u003ca href=\"https://github.com/codingo/Interlace\"\u003eInterlace:\u003c/a\u003e Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.\u003cbr\u003e\n\n\u003ca href=\"https://github.com/ffuf/ffuf\"\u003eFFUF:\u003c/a\u003e Fuzz Faster U Fool is a great tool used for fuzzing. It has become really popular lately with bug bounty hunters. Ffuf is used for fuzzing Get and Post data but can also be used for finding hidden files, directories or subdomains.\u003cbr\u003e\n\n\u003ca href=\"https://stedolan.github.io/jq/\"\u003ejq:\u003c/a\u003e jq is like ``sed`` for **JSON data** - you can use it to slice and filter and map and transform structured data with the same ease that ``sed``, ``awk``, ``grep`` and friends let you play with text. jq is written in ``portable C``, and it has zero runtime dependencies. You can download a single binary, ``scp`` it to a far away machine of the same type, and expect it to work. jq can mangle the data format that you have into the one that you want with very little effort, and the program to do so is often shorter and simpler than you'd expect.\n\n\u003ca href=\"https://github.com/projectdiscovery/subfinder\"\u003eSubfinder:\u003c/a\u003e Subfinder is a subdomain discovery tool that discovers valid subdomains for websites by using passive online sources. It has a simple modular architecture and is optimized for speed. subfinder is built for doing one thing only - passive subdomain enumeration, and it does that very well.\u003cbr\u003e\n\n\u003ca href=\"https://github.com/projectdiscovery/httpx\"\u003ehttpx:\u003c/a\u003e httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.\n\n\u003ca href=\"https://github.com/OJ/gobuster\"\u003eGoBuster: \u003c/a\u003eGobuster is a scanner that looks for existing or hidden web objects. It works by launching a dictionary attack against a web server and analyzing the response.\n\n\u003ca href=\"https://github.com/OWASP/Amass\"\u003eAmass: \u003c/a\u003eThe OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.\n\n**Thanks to all the authors of the tools used**\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr0x4r%2Fscvault","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fr0x4r%2Fscvault","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr0x4r%2Fscvault/lists"}