Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/cestef/rwalk

A blazingly fast web directory scanner written in Rust
https://github.com/cestef/rwalk

fuzzing rust web

Last synced: about 4 hours ago
JSON representation

A blazingly fast web directory scanner written in Rust

Host: GitHub
URL: https://github.com/cestef/rwalk
Owner: cestef
License: mit
Created: 2023-11-08T00:23:36.000Z (11 months ago)
Default Branch: main
Last Pushed: 2024-07-14T15:42:02.000Z (3 months ago)
Last Synced: 2024-09-15T00:56:57.879Z (19 days ago)
Topics: fuzzing, rust, web
Language: Rust
Homepage: https://rwalk.cstef.dev
Size: 6.71 MB
Stars: 21
Watchers: 1
Forks: 4
Open Issues: 0
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Awesome Lists containing this project

README

        


    



[![Crates.io](https://img.shields.io/crates/v/rwalk)](https://crates.io/crates/rwalk)

[![GitHub](https://img.shields.io/github/license/cestef/rwalk)](LICENSE)

[![Release](https://img.shields.io/github/v/release/cestef/rwalk)](https://github.com/cestef/rwalk/releases/latest)

A blazingly fast web directory scanner written in Rust. It's like [dirsearch](https://github.com/maurosoria/dirsearch) but on steroids.

It is designed to be fast in [**recursive scans**](https://rwalk.cstef.dev/docs/modes) and to be able to handle large wordlists.

Unlike other tools, rwalk does **not** provide advanced fuzzing features such as **parameter fuzzing**, **header discovery**, etc.



    



## Quick Installation

### From [homebrew](https://brew.sh) 

```bash

brew install cestef/tap/rwalk

```

### With [cargo-binstall](https://github.com/cargo-bins/cargo-binstall) 

```bash

cargo binstall rwalk

```

### From [crates.io](https://crates.io/crates/rwalk) 

```bash

cargo install rwalk

```



    


        You can also download the latest binary from the releases page.

    


## Documentation

The full documentation can be found at **[https://rwalk.cstef.dev](https://rwalk.cstef.dev)**.

## Task Runner

This project uses [`braisé`](https://github.com/cestef/braise) as a task runner. You can find all the available tasks in the [`braise.toml`](braise.toml) file.

## Benchmarks

The following benchmarks were run on a 2023 MacBook Pro with an M3 Pro chip on a 10 Gbps connection via WiFi. The target was [http://ffuf.me/cd/basic](http://ffuf.me/cd/basic) and the wordlist was [common.txt](https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/common.txt).

Each tool was run `10` times with `100` threads. The results are below:

| Command     |      Mean [s] | Min [s] | Max [s] |    Relative |

| :---------- | ------------: | ------: | ------: | ----------: |

| `rwalk`     | 2.406 ± 0.094 |   2.273 |   2.539 |        1.00 |

| `dirsearch` | 8.528 ± 0.149 |   8.278 |   8.743 | 3.54 ± 0.15 |

| `ffuf`      | 2.552 ± 0.181 |   2.380 |   3.005 | 1.06 ± 0.09 |

If you want to run the benchmarks yourself, you can use the `bench` command:

```bash

br bench

```

Arguments can also be passed to the `bench` command:

```bash

URL="http://ffuf.me/cd/basic" br bench

```

Please take these results with a grain of salt.

>  "There are three types of lies: lies, damned lies and benchmarks"

## Contributing

_Contributions are welcome! I am always looking for new ideas and improvements._

If you want to contribute to rwalk, please read the [CONTRIBUTING.md](CONTRIBUTING.md) file.

Make sure that your commits follow the [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) standard.

This project uses [commitizen](https://commitizen-tools.github.io/commitizen/) to help you with that.

## License

Licensed under the [MIT License](LICENSE).