Linux command
gau 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Fetch URLs for
gau [example.com]
Output to file
gau [example.com] -o [urls.txt]
Fetch with providers
gau --providers [wayback,otx] [example.com]
Include subdomains
gau --subs [example.com]
Filter by date
gau --from [202201] --to [202212] [example.com]
说明
gau (Get All URLs) fetches known URLs for domains from multiple sources including Wayback Machine, Common Crawl, and AlienVault OTX. It's used for reconnaissance and security research. The tool aggregates historical URLs that may reveal hidden endpoints, parameters, or old vulnerabilities. Results include archived pages, API endpoints, and file paths. gau enables discovering attack surface by finding URLs that were once publicly accessible.
参数
- -o _FILE_, --o _FILE_
- Output file.
- --providers _LIST_
- URL sources: wayback, otx, commoncrawl.
- --subs
- Include subdomains.
- --from _DATE_
- Start date (YYYYMM).
- --to _DATE_
- End date (YYYYMM).
- --help
- Display help information.
FAQ
What is the gau command used for?
gau (Get All URLs) fetches known URLs for domains from multiple sources including Wayback Machine, Common Crawl, and AlienVault OTX. It's used for reconnaissance and security research. The tool aggregates historical URLs that may reveal hidden endpoints, parameters, or old vulnerabilities. Results include archived pages, API endpoints, and file paths. gau enables discovering attack surface by finding URLs that were once publicly accessible.
How do I run a basic gau example?
Run `gau [example.com]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -o _FILE_, --o _FILE_ do in gau?
Output file.