Glad it was helpful!

We actually had someone ask this in our Discord as well. So feel free to check that out. Gobuster just bruteforces directories whereas KiteRunner uses the context it's in more.

Lol

This is highly dependent on implementation so without further contextual information, there isn't much I can do I'm afraid ;)

Do you have any examples of tools for that?

Wafwoof. But I'm not sure if it's the best one out there.

@@crusader_ bro wafw00f is used to detect waf technology behind web app

# Use a dirsearch style wordlist with %EXT% kr brute target.com/subapp/ -w dirsearch.txt -x 20 -j 1 -exml,asp,aspx,ashx -D # You have your own wordlist but you want assetnote wordlists too kr scan target.com -w routes.kite -A=apiroutes-210328:20000 -x 20 -j 1 --fail-status-codes 400,401,404,403,501,502,426,411

Glad you enjoyed it!

It could be that the website is very slow, the wordlist large and perhaps your internet a bit slower as well.

Thanks!

KiteRunner will do that for you!

Make sure the binary is in your PATH.

Thanks!

Nice!

@@intigriti 😂