LinuxCommandLibrary

kiterunner-kb

Search Kiterunner's knowledge base for vulnerability information

TLDR

Compile a kitebuilder schema from JSON to a kite file

$ kiterunner kb compile [path/to/wordlist.json] [path/to/wordlist.kite]
copy

Convert a kite file to a text wordlist
$ kiterunner kb convert [path/to/wordlist.kite] [path/to/wordlist.txt]
copy

Convert a text wordlist to a kite file
$ kiterunner kb convert [path/to/wordlist.txt] [path/to/wordlist.kite]
copy

Convert a kite file to a JSON schema
$ kiterunner kb convert [path/to/wordlist.kite] [path/to/wordlist.json]
copy

Parse a kitebuilder schema and output prettified JSON data
$ kiterunner kb parse [path/to/wordlist.json] [[-o|--output]] [json]
copy

Parse a kite file and output prettified text data
$ kiterunner kb parse [path/to/wordlist.kite] [[-o|--output]] [text]
copy

Replay a specific request from a kitebuilder schema output
$ kiterunner kb replay [[-w|--kitebuilder-list]] [path/to/wordlist.kite] "[request_output]"
copy

Replay a request through a proxy for inspection
$ kiterunner kb replay [[-w|--kitebuilder-list]] [path/to/wordlist.kite] [[-p|--proxy]] [http://localhost:8080] "[request_output]"
copy

SYNOPSIS

kiterunner-kb [command] [options]

PARAMETERS

import
    Imports a knowledge base file.

export
    Exports the current knowledge base to a file.

update
    Updates the knowledge base from a remote source or local file.

show
    Displays the contents of the knowledge base.

-f, --file
    Specifies the knowledge base file to use. Required for import/export.

--source
    Specifies the URL to fetch the new Knowledge Base file from. Required for update.

-v, --verbose
    Enables verbose output.

-h, --help
    Displays help information.

DESCRIPTION

The kiterunner-kb command is a tool designed to manage and interact with the Kiterunner's knowledge base.
Kiterunner is a context-aware vulnerability scanner. The knowledge base contains information about various endpoints, common files, and potential vulnerabilities that Kiterunner can use during its scans.
The kiterunner-kb command allows you to import, export, update, and view the contents of this knowledge base. This command is essential for customizing and extending Kiterunner's scanning capabilities.
It ensures that Kiterunner has the most up-to-date information for effective vulnerability detection. By providing different options, users can manipulate the knowledge base file to suit their scanning needs. For example, users can add specific endpoints relevant to their target or remove outdated entries.

CAVEATS

Incorrectly formatted knowledge base files can cause Kiterunner to malfunction or produce inaccurate results.
Ensure that any imported or updated files are properly formatted and from a trusted source.

EXAMPLE USAGE

Importing: kiterunner-kb import -f mykb.json
Exporting: kiterunner-kb export -f currentkb.json
Updating: kiterunner-kb update --source https://example.com/latestkb.json
Showing: kiterunner-kb show

SEE ALSO

kiterunner(1)

Copied to clipboard