Hakrawler

Fast web crawler for endpoint discovery

Recon & OSINT8 commands

#crawler#endpoint#recon#golang

Installation

1Install via Go

2Verify installation

# Using Go
go install github.com/hakluke/hakrawler@latest

# Verify
hakrawler -h

Basic Usage

Crawl a target website and discover endpoints

# Basic crawl via stdin
echo "https://example.com" | hakrawler

# Deep crawl with subdomains
echo "https://example.com" | hakrawler -subs -depth 3

# Output to file
echo "https://example.com" | hakrawler -out results.txt

# With custom user agent
echo "https://example.com" | hakrawler -u "Mozilla/5.0"

Command Reference

8 commands

1Include subdomains

-subs

2Crawl depth

-depth

3Output file

-out

4Custom user agent

-u

5Number of threads

-t

6Request timeout

-timeout

7Skip TLS verification

-insecure

8Show help

-h

When to Use

Initial reconnaissance for endpoint discovery

Finding JavaScript files and API endpoints

Mapping site structure before manual testing

Automated content discovery in bug bounty

Collecting URLs for further analysis

Notes & Tips

Designed for use in pipelines with other tools

Lightweight and fast compared to traditional crawlers

Output can be piped directly to tools like gf or qsreplace

Does not render JavaScript — only parses responses

Common Errors & Solutions

No URLs found

Increase depth with -depth flag or check target accessibility

TLS errors

Use -insecure flag to skip certificate verification

Too many redirects

The tool follows redirects by default; check target configuration

Hakrawler

Fast web crawler for endpoint discovery

Recon & OSINT8 commands

#crawler#endpoint#recon#golang

Installation

1Install via Go

2Verify installation

# Using Go
go install github.com/hakluke/hakrawler@latest

# Verify
hakrawler -h

Basic Usage

Crawl a target website and discover endpoints

# Basic crawl via stdin
echo "https://example.com" | hakrawler

# Deep crawl with subdomains
echo "https://example.com" | hakrawler -subs -depth 3

# Output to file
echo "https://example.com" | hakrawler -out results.txt

# With custom user agent
echo "https://example.com" | hakrawler -u "Mozilla/5.0"

Command Reference

8 commands

1Include subdomains

-subs

2Crawl depth

-depth

3Output file

-out

4Custom user agent

-u

5Number of threads

-t

6Request timeout

-timeout

7Skip TLS verification

-insecure

8Show help

-h

When to Use

Initial reconnaissance for endpoint discovery

Finding JavaScript files and API endpoints

Mapping site structure before manual testing

Automated content discovery in bug bounty

Collecting URLs for further analysis

Notes & Tips

Designed for use in pipelines with other tools

Lightweight and fast compared to traditional crawlers

Output can be piped directly to tools like gf or qsreplace

Does not render JavaScript — only parses responses

Common Errors & Solutions

No URLs found

Increase depth with -depth flag or check target accessibility

TLS errors

Use -insecure flag to skip certificate verification

Too many redirects

The tool follows redirects by default; check target configuration