Unja
Fetch Known Urls
What's Unja?
Unja is a fast & light tool for fetching known URLs from Wayback Machine, Common Crawl, Virus Total & AlienVault's Otx it uses a separate thread for each provider to optimize its speed and use Wayback resumption key to divide scan into multiple parts to handle a large scan & it uses direct filters on API to get only filtered data from API to do less work on your system.
Why Unja?
- Supports
Wayback/Common-Crawl/Virus-Total/Otx
- Automatically handles rate limits and timeouts
- Export results: text or detailed output with status,mime,length in JSON
- MultiThreading: separate thread for each provider to fetch data simultaneously
- Filters: apply filters dirtly on provider to avoid unnecessary data
Installing Unja
You can install Unja
with pip as following:
pip3 install unja
or, by downloading this repository and running
python3 setup.py install
Updating Unja
You can update Unja
with pip as following:
pip3 install unja -U
Usage
unja -h
This will display help for the tool.
Flag | Description | Example |
---|---|---|
-d | doimain | unja -d ninjhacks.com |
--sub | Include subdomain | unja --sub |
-p | Providers (wayback commoncrawl otx virustotal) | unja -p wayback |
--wbf | (default : statuscode:200 ~mimetype:html) | ninjref --filter statuscode:200 |
--ccf | (default : =status:200 ~mime:.*html) | ninjref --filter =status:200 |
--wbl | Wayback results per request (default : 10000) | unja --wbl 1000 |
--otxl | Otx results per request (default : 500) | unja --otxl 500 |
-r | Amount of retries for http client (default : 3) | nnja -r 3 |
-v | Enable verbose mode to show errors | nnja -v |
-j | Enable json mode for detailed output in json format | nnja -j |
-s | Silent mode don't print header | nnja -s |
--ucci | Update CommonCrawl Index | nnja --ucci |
--vtkey | Change VirusTotal Api in config | nnja --vtkey |
Output Methods
text = ( default ) Output urls only.
json = ( -j ) Output url,status,mime,length in json format it's can help you later filtering result based on those variables.
Filters
Filters directly apply on providers to get only useful filtered data from provider.
Wayback | Commoncrawl | Description |
---|---|---|
statuscode:200 | =status:200 | return only those urls which status code is 200 |
!statuscode:200 | !=status:200 | return only non 200 status code |
mimetype:text/html | mime:text/html | return only those url which response type is text/html |
!mimetype:text/html | !=mime:text/html | return only non text/html response type |
~mimetype:html | ~mime:.*html | return all those url which have html word in response type |
~original:unja | ~url:.*unja | return all those url which have unja word in url |
Oneliners
Get only urls with parameters & status code 200
unja -s -d target.com --sub -p wayback commoncrawl --wbf 'statuscode:200 ~original:=' --ccf '=status:200 ~url:.*=' | anew | tee output
Looking for open redirects
unja -s -d target.com --sub -p wayback commoncrawl --wbf '~statuscode:30 ~original:=http' --ccf '~status:30 ~url:.*=http' | anew | tee output
Clean result ( Exclude images,css,javascripts,woff & 404)
unja -s -d target.com --sub -p wayback commoncrawl --wbf '!statuscode:404 ~!mimetype:image ~!mimetype:javascript ~!mimetype:css ~!mimetype:woff' --ccf '!=status:404 !~mime:.*image !~mime:.*javascript !~mime:.*css !~mime:.*woff' | anew | tee output
Let me know if you have any other good oneliner ./