katana
« Back to VersTracker
Description:
Crawling and spidering framework
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: web-crawler reconnaissance security pentesting javascript discovery
Install: brew install katana
About:
Katana is a fast and flexible web crawling framework designed to discover endpoints and assets within web applications. It operates as both a standalone crawler and a library, enabling developers to build custom crawling logic. The tool excels at processing complex JavaScript-heavy sites to map out attack surfaces for security assessments.
Key Features:
  • Headless browser support for modern web applications
  • Flexible output formats (JSON, CSV, etc.) for integration
  • Configurable crawling depth and scope
  • Automatic handling of authentication and session management
  • Extensible via Go modules for custom functionality
Use Cases:
  • Reconnaissance and mapping of web application attack surfaces
  • Automated asset discovery for penetration testing engagements
  • Extracting endpoints for API security analysis
  • Building custom web scrapers for data collection
Alternatives:
  • gau – Fetches known URLs from AlienVault's OpenThreat Exchange, while Katana actively crawls live targets
  • waybackurls – Retrieves historical URLs from Wayback Machine, whereas Katana discovers current active endpoints
  • hakrawler – Lightweight Go crawler focused on simplicity, Katana offers more advanced features and JavaScript rendering
Version History
Detected Version Rev Change Commit
Sep 12, 2025 1:23pm 0 VERSION_BUMP 721edef0
Oct 28, 2024 4:12pm 0 VERSION_BUMP 8bf550e3
Sep 14, 2024 10:47am 0 VERSION_BUMP e2023132