Usage: python3 setup.py python3 freak.py
warning This tool will throw error if you doesn't provide valid api key
Mechanism
Detect the CMS and its version used in the web application
Fuzz the basic vulnerable directory and find sensitive files like .git, wp-json, xmlrpc, crossdomain, etc.
fetch all the javascript files used in the webpage and displays on terminal
Fetch the cloudservices used in domain, country, area, ISP also fetch the open ports via searching on Shodan
fetch all the URL from wayback machine or which are archieved by administrator
Fetch all dns records of web application
- txt records
- host records
- mx records
warning This tool will throw error if you doesn't provide valid api key