waymore

waymore [-i domain] [-mode mode] [-oU file] [options]

waymore is a reconnaissance tool that discovers URLs and archived responses for a domain by querying multiple web archive sources including the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive, and Intelligence X. It provides broader coverage than tools that query only a single archive.The tool operates in three modes: URL mode (U) extracts known URLs for the target domain from archive indices, response mode (R) retrieves the actual archived page contents, and both mode (B) does both. Results can be filtered to exclude specific sources or match keyword patterns.Multi-threaded processing speeds up large queries, and output can be saved to files for further analysis. The tool is commonly used in security research and bug bounty programs for discovering forgotten endpoints, old API paths, and removed content.

-i DOMAIN

Input domain or file of domains.

Mode: U (URLs only), R (Responses only), B (Both). Default: U.

Do not include subdomains of the target domain.

Output file for discovered URLs.

Output directory for downloaded responses.

Exclude Common Crawl results.

Exclude Alien Vault OTX results.

Limit requests per source (0 = no limit).

Check estimated request count and time without running.

Overwrite output file instead of appending.

Filter URLs with keyword regex.

Verbose output.

Rate limited by archive sources. Large domains can take significant time; use -co to estimate first. Requires Python 3. Configuration via config.yml for API keys and defaults.

waymore was created by xnl-h4ck3r for web reconnaissance, searching multiple archive sources for URLs.

waybackurls(1), gau(1), hakrawler(1)