• Tools
  • Features
  • Resources

Introduction

Getting Started

Platform Features

Scanning
AI Analysis
Code Scanning (SAST)
Reports
Dashboard & Analytics

Developer Reference

REST API
CLI Reference
CI/CD Integration
Tool Tactics
SubfinderNmapKatanaNucleiHttpxGitleaksWPScan

katanaweb

What is the purpose of katana?

Katana is a next-generation crawling and spidering framework. It is designed to be highly customizable, fast, and able to navigate modern web applications, including Single Page Applications (SPAs) relying heavily on JavaScript.

Core Features

  • Headless browser support for modern web applications
  • Automatic form filling and JavaScript execution
  • Customizable crawling scope and depth
  • Integration with other security tools for automated vulnerability discovery

Common Katana Commands

1. Basic Crawl

Crawls the target URL with default settings.

bash
katana -u <target>

2. Crawl with Headless Browser

Uses a headless browser to render JavaScript heavy applications.

bash
katana -u <target> -hl

3. Specify Depth

Limits the crawling depth to avoid getting stuck in infinite loops.

bash
katana -u <target> -d 3

4. Output to File

Saves the discovered endpoints to a file.

bash
katana -u <target> -o endpoints.txt

Output Examples of Katana Commands

https://example.com/ https://example.com/about https://example.com/api/v1/users https://example.com/login
Previous
Nmap
Next
Nuclei
⌘K

On this page

PurposeCore FeaturesCommon CommandsOutput Examples