Question 1

How to use Aquatone with Nmap XML output?

Accepted Answer

Pipe the Nmap XML file into Aquatone with the '-nmap' flag: 'cat scan.xml | aquatone -nmap'. This tells Aquatone to parse the input as Nmap/Masscan XML for port scan results.

Question 2

Aquatone vs EyeWitness for web screenshotting?

Accepted Answer

Aquatone excels at integration with other tools via stdin and generates clustered HTML reports, while EyeWitness may offer different scripting options. Aquatone is better for automated workflows, but both serve visual reconnaissance purposes.

Question 3

Can Aquatone automatically detect vulnerabilities?

Accepted Answer

No, Aquatone focuses on reconnaissance—collecting screenshots, headers, and response bodies. It doesn't perform active exploitation or deep vulnerability scanning; it's meant for surface analysis and reporting.

Question 4

How to speed up Aquatone for a large list of targets?

Accepted Answer

Increase the threads with '-threads' for concurrent processing, reduce ports scanned with '-ports', and disable body saving with '-save-body=false' to lower disk I/O and improve performance.

Question 5

Does Aquatone work on Windows without Chromium?

Accepted Answer

It requires Chrome or Chromium installed, as noted in the README. On Windows, you must ensure Chromium is available and specify the path with '-chrome-path' if not in default locations, which can be tricky.

Question 6

How to change the screenshot resolution in Aquatone?

Accepted Answer

Use the '-resolution' flag followed by width and height, e.g., '-resolution 1920,1080'. The default is 1440x900, but you can adjust it based on your needs for clearer visuals.

AQUATONE

What is AQUATONE?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions