xsearch

module

v1.0.6 Latest Latest Go to latest Published: Dec 18, 2025 License: MIT

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/Fastdev75/xsearch

Links

Open Source Insights

README ¶

Xsearch

Modern, ultra-fast web content discovery tool written in Go.

██╗  ██╗███████╗███████╗ █████╗ ██████╗  ██████╗██╗  ██╗
╚██╗██╔╝██╔════╝██╔════╝██╔══██╗██╔══██╗██╔════╝██║  ██║
 ╚███╔╝ ███████╗█████╗  ███████║██████╔╝██║     ███████║
 ██╔██╗ ╚════██║██╔══╝  ██╔══██║██╔══██╗██║     ██╔══██║
██╔╝ ██╗███████║███████╗██║  ██║██║  ██║╚██████╗██║  ██║
╚═╝  ╚═╝╚══════╝╚══════╝╚═╝  ╚═╝╚═╝  ╚═╝ ╚═════╝╚═╝  ╚═╝

Features

High-performance concurrent scanning using goroutines
Real-time colored output
Automatic SecLists integration (Kali Linux friendly)
Clean output file with URLs only (no status codes)
Customizable thread count and timeout
Extension brute-forcing support
Status code filtering
Graceful shutdown with CTRL+C

Installation

Method 1: Go Install (Recommended)

go install -v github.com/Fastdev75/xsearch/cmd/xsearch@latest

Method 2: Build from Source

git clone https://github.com/mcauet/xsearch.git
cd xsearch
go build -o xsearch ./cmd/xsearch
sudo mv xsearch /usr/local/bin/

Kali Linux Setup

Xsearch uses SecLists by default. Install it with:

sudo apt install seclists -y

Default wordlist path: /usr/share/seclists/Discovery/Web-Content/common.txt

Usage

Basic Scan

xsearch -u https://target.com

With Custom Wordlist

xsearch -u https://target.com -w /path/to/wordlist.txt

Save Results to File

xsearch -u https://target.com -o results.txt

With Extensions

xsearch -u https://target.com -x php,html,js,txt

Filter Status Codes

xsearch -u https://target.com -status 200,301,403

Full Example

xsearch -u https://target.com -w wordlist.txt -o results.txt -t 100 -x php,html -timeout 15

Flags

Flag	Description	Default
`-u`	Target URL (required)	-
`-w`	Wordlist path	SecLists common.txt
`-o`	Output file for valid URLs	-
`-t`	Number of threads	50
`-timeout`	HTTP timeout (seconds)	10
`-status`	Filter by status codes	All except 404
`-x`	File extensions	-
`-ua`	Custom User-Agent	Xsearch/1.0
`-silent`	Disable banner	false
`-version`	Show version	-
`-h`	Show help	-

Output

Terminal Output

Real-time colored output showing status codes and URLs:

[200] https://target.com/admin [1.2KB]
[301] https://target.com/login [0B]
[403] https://target.com/.git [287B]

File Output (-o)

Clean list of URLs only (no status codes):

https://target.com/admin
https://target.com/login
https://target.com/.git

Legal Disclaimer

Xsearch is intended for authorized security testing and educational purposes only. Users are responsible for ensuring they have proper authorization before scanning any target. Unauthorized access to computer systems is illegal.

License

MIT License

Directories ¶

Path	Synopsis
cmd
xsearch command
internal
httpclient
output
scanner
utils
wordlist

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL