Gowitness

Gowitness is an automated tool designed for capturing web application screenshots during penetration testing. Built using the Go programming language (Golang), it employs a headless browser to provide accurate web interface snapshots, making it valuable for security professionals conducting assessments. In addition to screenshots, Gowitness captures HTML responses and HTTP headers for fingerprinting, helping identify underlying technologies used by web applications.

The tool also features a report viewer for organized result analysis, aiding in documentation and remediation planning. As an open-source project, Gowitness benefits from continuous improvements and community contributions, and it supports multiple operating systems, including Linux and macOS, making it accessible to a broad range of users. Overall, Gowitness is an essential tool for cybersecurity professionals focused on efficient web application testing.working.

Install: (Go)

go install github.com/sensepost/gowitness@latest

Full installation information can be found here.

Usage:

# Screenshot a single website
gowitness single https://www.google.com/

# Screenshot a cidr using 20 threads
gowitness scan --cidr 192.168.0.0/24 --threads 20

# Screenshot open http services from an namp file
gowitness nmap -f nmap.xml --open --service-contains http

# Run the report server
gowitness report serve