GhostPath - Interactive Recon Shell for Ethical Hackers
Project description
GhostPath โ A Modern Interactive Reconnaissance Toolkit for Hackers & Security Researchers ๐ต๏ธโโ๏ธ
๐ง What is GhostPath?
GhostPath is a professional-grade CLI reconnaissance toolkit designed for cybersecurity researchers, penetration testers and bug bounty hunters. It provides a modular, extensible and interactive shell to run recon operations in an intuitive and streamlined way.
๐ก Powered by Python and focused on speed, clarity and results.
โจ Features
- ๐ Interactive hacker-style CLI shell
- ๐ Passive and active recon modules
- ๐งฉ Modular architecture with shared utilities
- ๐ Output saving in TXT, JSON, CSV
- ๐ Multithreaded path probing with live feedback
- ๐งพ Certificate transparency & subdomain discovery
- ๐ Wayback, URLScan and CommonCrawl support
- ๐ง Built-in wordlist fallback & auto-detection
- ๐ง
pipx-installable for global CLI use - โ
--help,--versionandupdatecommand support
๐ Installation (Recommended: pipx)
Use pipx for a clean, isolated global installation:
# Install pipx (if not already)
sudo apt install pipx
pipx ensurepath
source ~/.bashrc # or ~/.zshrc
# Clone and install GhostPath
git clone https://github.com/atharvbyadav/GhostPath.git
cd GhostPath
pipx install .
โ Run from anywhere:
GhostPath
๐ Running without pipx (Direct Script Mode)
If you prefer not to use pipx, you can run GhostPath directly using Python:
1. Clone the repository
git clone https://github.com/atharvbyadav/GhostPath.git
cd GhostPath
2. (Optional) Create a virtual environment
Highly recommended to isolate dependencies.
python3 -m venv venv
source venv/bin/activate
3. Install the dependencies
pip install -r requirements.txt
4. Run the GhostPath CLI shell
python3 main_cli.py
๐ป Usage Overview
Once inside the shell:
ghostpath> help
Youโll see:
๐งฉ Available GhostPath Commands:
timetrail โ Fetch historical URLs from archives (Wayback, URLScan, Common Crawl)
domainscope โ Discover subdomains & DNS profiling
pathprobe โ Actively probe directories and endpoints
certtrack โ Get subdomains from public SSL/TLS certs
version โ Show current installed version
clear โ Clear the screen
help โ Show this help menu
exit โ Exit GhostPath CLI
๐งฉ Modules
๐ฐ๏ธ timetrail
Fetch historical URLs from:
- Common Crawl (default)
- Wayback Machine
- URLScan.io
timetrail --target example.com
timetrail --target example.com --source wayback --output urls.json --format json
๐ domainscope
Find subdomains and related DNS data.
domainscope --target example.com
domainscope --target example.com --output domains.txt
๐ certtrack
Gather subdomains from SSL/TLS certificate transparency logs.
certtrack --target example.com
certtrack --target example.com --output certs.csv --format csv
๐ pathprobe
Actively probe common paths/endpoints on a web app using HTTP requests.
pathprobe --target https://example.com
pathprobe --target https://example.com --wordlist lists/path-wordlist.txt --output result.json --format json
If no wordlist is passed, it will fallback to:
GhostPath/lists/path-wordlist.txt
๐งช Output Formats
All modules support output saving in:
- โ
.txt - โ
.json - โ
.csv
Just pass:
--output filename --format txt|json|csv
๐ฆ Version & Self-Update
Check current version:
ghostpath> version
Reinstall / Update (via pipx):
pipx reinstall GhostPath
๐ License
BSD 3-Clause License
Copyright (c) 2025, Atharv Yadav
All rights reserved.
๐ See the LICENSE file for full license terms.
๐ค Contributing
We welcome your pull requests, feature ideas and improvements to make GhostPath even better! Here's how to contribute:
-
Fork the repository
-
Clone your fork locally:
git clone https://github.com/yourusername/GhostPath.git cd GhostPath
-
Create a new branch for your changes:
git checkout -b feature/your-feature
-
Make your changes and commit:
git commit -m "Add: your feature/fix summary" git push origin feature/your-feature
-
Open a Pull Request on GitHub ๐ฌ
Please follow best practices and write clear commit messages ๐
๐จโ๐ป Author
โโ[ Coded with โ + โก by Atharv Yadav ]
โ
โโ๐ ๏ธ Creator of GhostPath
โโ๐ https://github.com/atharvbyadav
โโ๐ง uuwr5t1s [at] duck [dot] com
{ _Looks suspicious? Good. Itโs mine. The ducks work for me. ๐ฆ๐ป_ }
"I donโt just scan โ I haunt networks." ๐ป
๐ GitHub: @atharvbyadav
โ๏ธ Email Me
๐ท๏ธ GhostPath โ Stealthy. Modular. Effective.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file ghostpath-2.3.6.tar.gz.
File metadata
- Download URL: ghostpath-2.3.6.tar.gz
- Upload date:
- Size: 85.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.11.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e323bbf12eef03a4f2207b5c16d817d7403dced720410fef9ceb86c9dfee3684
|
|
| MD5 |
7be408858df4fb96837f76c99b1c2d9c
|
|
| BLAKE2b-256 |
90c778e0ebfbc2203fbf9c7ebfd4a54ccc232833e6cc36650296604c6c017bb0
|
File details
Details for the file ghostpath-2.3.6-py3-none-any.whl.
File metadata
- Download URL: ghostpath-2.3.6-py3-none-any.whl
- Upload date:
- Size: 87.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.11.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
18b85f09b916a83a868f191ac0fdbc79e1178ea83d220f8cf398e206422cef5b
|
|
| MD5 |
6c42be6f660ec27aad26caa71603ccec
|
|
| BLAKE2b-256 |
54509de21b4421d971ffbbdbfccb98d1095e43f921def3b0d052f666c081e258
|
