Meta options

... or options that are mutualized among task categories for efficiency, speed, and user-friendliness.

Meta options apply to tasks, workflows, or scans. When passed to workflows or scans, they will be passed to each task contained in the runner.

circle-exclamation

Execution Options

Threads (-threads)

Number of threads to use. Applies to all tasks supporting threads (or concurrency).

chevron-rightExample: set 50 threadshashtag
secator w host_recon mydomain.com -threads 50

Requests Options

The following options will apply to tasks making network requests (if they implement it), no matter the protocol used (HTTP, TCP, UDP, DNS, FTP, ...).

Proxy (-proxy)

Proxy (HTTP, Socks5, ...) to use when communicating with the targets.

chevron-rightExample: set proxies in config and -proxy to autohashtag
circle-info

Learn more about Proxies.


Rate limit (-rl)

Rate limit is an upper limit on the number of requests per second.

chevron-rightExample: set a rate limit of 50 requests/secondhashtag

Timeout (-timeout)

Timeout is the time to wait (in seconds) before giving up on the request.

chevron-rightExample: set a request timeout of 10 secondshashtag

Retries (-retries)

Number of retries for failed requests.

chevron-rightExample: set 5 retries for all requestshashtag

Delay (-d)

Delay to add between each request (in seconds).

chevron-rightExample: add a 0.5 second delay between requestshashtag

HTTP Options

The following options will apply to tasks making HTTP requests (if they implement it).

Header (-H)

Custom header to add to each request in the form "KEY1:VALUE1;; KEY2:VALUE2".

chevron-rightExample: set an Authorization and an Accept headerhashtag

Method (-X)

HTTP method to use for request GET, POST, PUT, DELETE, etc...

chevron-rightExample: use POST method for fuzzinghashtag

Data (-data)

Data to send in the request body.

chevron-rightExample: send JSON data in POST requesthashtag

User-agent (-ua)

Custom user-agent to use for request.

chevron-rightExample: use secator as a user agent valuehashtag

Match regex (-mr)

Keep responses which body content match the input.

chevron-rightExample: keep responses which match the regexMySQLError.*hashtag

Match size (-ms)

Keep responses which body size (in bytes) match the input.

chevron-rightExample: keep responses with 1025 byteshashtag

Match-words (-mw)

Keep responses which body word count match the input.

chevron-rightExample: keep responses with 10 wordshashtag

Match code (-mc)

Keep responses which HTTP status codes match the input.

chevron-rightExample: keep responses matching HTTP statuses 200,400,501hashtag

Filter regex (-fr)

Filter out responses which body content match the input.

chevron-rightExample: filter out responses containing the string LoginPagehashtag

Filter codes (-fc)

Filter out responses which HTTP status codes match the input.

chevron-rightExample: filter out responses matching HTTP status 500hashtag

Filter size (-fs)

Filter out responses which body size (in bytes) match the input.

chevron-rightExample: filter out responses with 1025 byteshashtag

Filter words (-fw)

Filter out responses which body word count match the input.

chevron-rightExample: filter out responses with 10 wordshashtag

Follow redirect (-frd)

Follow all http redirects.

chevron-rightExample: follow HTTP redirectshashtag

Depth (-depth)

Scan depth for crawling tasks.

chevron-rightExample: set crawl depth to 3hashtag

Replay proxy (-P)

Proxy to use for replay requests (useful for fuzzing tasks).

chevron-rightExample: use a proxy for replay requestshashtag

Wordlist (-w)

Custom wordlist to use.

chevron-rightExample: use fuzz-Bo0oM wordlisthashtag

Port Scanning Options

The following options apply to port scanning tasks (e.g., naabu, nmap).

Ports (-p)

Only scan specific ports. Accepts a comma-separated list of ports, or - for all ports.

chevron-rightExample: scan ports 80, 443, and 8080hashtag

Top ports (-tp)

Scan the N most common ports.

chevron-righthashtag

Last updated