2.1.2

fixes

• Resolve a flag naming conflict with the scan port and global proxy.

1eb5adedb5d652b88729249a7cd3dd4af25024f0  gowitness-2.1.2-darwin-amd64
15fc67fa73261ce8234b1e27582e5fd67be1d7f3  gowitness-2.1.2-linux-amd64
9dac98cca720e7a2c3c3bace54695aa7a650cf24  gowitness-2.1.2-windows-amd64.exe

2.1.1

fixes

• Resolve a flag naming conflict with the nmap port and global proxy.

61f1261000f167484177b1af3cd6002b64d69ffd  gowitness-2.1.1-darwin-amd64
61f8a8d9f1188b0281232af4f40f2c202b079769  gowitness-2.1.1-linux-amd64
618c54ca1290ff79f59d6f4c1c842bf1c3e53e73  gowitness-2.1.1-windows-amd64.exe

2.1.0

new

• Add proxy support (9736345) thanks @randomactsofsecurity

fixes

• Ensure that the screenshot path is ready for the single command
• Build artefacts with CGO_ENABLED=1 for all platforms so that the sqlite library in use also works cross-platform

0a6395a6882bc1808386e788cb2c7dee20c0b8c4  gowitness-2.1.0-darwin-amd64
d1b21650ecd2459169c19f90113628a0cf2f6679  gowitness-2.1.0-linux-amd64
dc29f0b2adc11ddb47a63485871bb9908055a273  gowitness-2.1.0-windows-amd64.exe

2.0.0

This version contains a major code refactor with many changes and upgrades to improve the overall performance and experience of using gowitness! Enjoy.

new

• Add json & csv output flags for the report list subcommand.
• Add better error handling for the screenshot integration server subcommand (serve)
• Add a new interactive report viewer subcommand: report serve.
• Add the ability to submit URL's for screenshotting via the report viewer.
• Add the ability to search for title names in the report viewer.

changes

• Replace the home grown invocation of Google Chrome with chromedp.
• Remove the proxy server hack to bypass TLS errors in the v1 Chrome invocation implementation. We now use the ignore-certificate-errors flag via chromedp.
• Refactor the file, scan, nmap and single subcommands for better readability and options parsing.
• Replace logging from logrus to zerolog.
• Remove log levels and add a --debug flag.
• Replace the database used from BuntDB to Sqlite3.
• Remove gorequest used for preflighting and replace it with the nativehttp.Client
• Remove static HTML report generation.
• Update the Dockerfile to use chromedp/headless-shell as the base image.

fixes

Various bugs found along the way were also fixed, but most importantly the use of chromedp should make for a more stable and predictable experience overall.

1.3.4

v1.3.4

new

• Add support for stdin as a file input source by using - as the file name. This means you can pipe tool output to gowitness. eg. tool | gowitness file --source -. You could use something like subfinder to get urls to screenshot for a domain too! (d4b2044)
• Add a new server sub command to start a webservice to take screenshots. Once the web server is running with gowitness server, browse to it with a url parameter to have a screenshot returned as an HTTP response. eg. http://localhost:7171/?url=https://www.google.com. Thanks @x0rzkov (#55)
• Add a new --output / -o flag to the single command to specify the target file name for the screenshot. Thanks @gmessow-cxomni (#53)
• Add a new --open flag to the nmap command to only use ports that were considered open. Thanks @randomactsofsecurity (#52)
• Add port collections for the scan command in the form of flags. --ports-sm (defaults to enabled), --ports-me and --ports-lg each have a set of ports which may be used in conjunction with the --ports flag to specify other custom ports. (41494d4)

fixes

• Restore the ability to have single page reports again by specifying 0 as the chunk size for reports. (056af0b)

other

• Improve debug logging for Chrome to help with hunting down issues. Example usage is described in this comment. (2699bf2)
• Ensure that the final ports list is unique for the scan command. (92c642b)

3fba7bb295b2c488a5d7badb685638d50f30cdbe  gowitness-darwin-amd64
b5eb3dd4815004f3ad8e6d6341788283423446ad  gowitness-linux-amd64
7796a0eda61d89b0d4ef8fcbc7af406da10a18ed  gowitness-windows-amd64.exe

1.3.3

v1.3.3

other

• Improve internal error handling when the Chrome screenshot function fails.

4b50407f352c13e1e6b8440d1055227df0334b6e  gowitness-darwin-amd64
75962c1cc96f81cf4e41f889ee7d2fa4c7616b5b  gowitness-linux-amd64
507d7914ca9c9cc9ae3aec70b02d3b23586606a7  gowitness-windows-amd64.exe

1.3.2

v1.3.2

new

• Add new --service-contains / -w flag to the nmap subcommand to filter by services that contain a string. ie. http. Using something like http will match service names like http-alt, http-proxy, anything-http-anything.

6d315e3dab8aecaddc9e821d4f205978e1a485cf  gowitness-darwin-amd64
7e84c46e4e4ac0811beada81c5b2c0716d7765ef  gowitness-linux-amd64
e35d9668e83d8030f53b2a408d3e54c2543fb5a1  gowitness-windows-amd64.exe

1.3.1

v1.3.1

fixed

• Fix the User-Agent configuration used for initial probing requests (#36 )

997deb2fda594720a61c11b2612aa4eea27c85b2  gowitness-darwin-amd64
e6f6a60ddd5d2488806fea03fb12bafa740a7d80  gowitness-linux-amd64
3e99026a4854ac029f3f17efe128eb3ea3cc352f  gowitness-windows-amd64.exe

1.3.0

v1.3.0

new

• Add the ability to provide a single URI, or a file containing URI's for screenshots to the scan command. For example: gowitness scan --ports 80,443,8080 --cidr 192.168.0.0/30 --append-uri '/admin'.

868f770db715e4af49c0a653ab8fbf491cf9eef7  gowitness-darwin-amd64
6a9a3df684fedb38952debba443d5f858b210a04  gowitness-linux-amd64
3d078bec86398b8b2978379d849ddb4bbc1b1a1d  gowitness-windows-amd64.exe

1.2.1

v1.2.1

fixes

• Screenshot directories are no longer stored as absolute paths.

other

• Add official Docker image available here.

38974b4aa4577f5d49dd5f4b25efa62f2795625b  gowitness-darwin-amd64
7ad83d3f55b4a5a711feff23cefd924f94f2b00d  gowitness-linux-amd64
963c31ac334f7890188e6726dea4457672e35fbe  gowitness-windows-amd64.exe