Katana

Katana is a fast command-line crawling and spidering framework, built in Go by ProjectDiscovery and aimed at security recon and attack-surface discovery. It maps a site's URLs and endpoints from a single URL, a list, or stdin, and writes results to stdout, a file, or JSON.

It offers a standard mode using Go HTTP requests and a headless mode that drives a real browser for JavaScript parsing. Automatic form filling, regex and field-based scope control, configurable output, and a knowledge base for ML page-type and form classification round out its toolkit.

Katana installs as a pre-compiled binary, a Docker image, or from source with Go. It is released under the MIT License and runs entirely as a local CLI, with no hosted service.