Question 1

Is XRay still maintained or should I use something else?

Accepted Answer

No, this Go version of XRay is legacy and deprecated. The author has moved to a Rust reimplementation called Legga, which is the actively maintained project with more features.

Question 2

Do I need a Shodan API key for XRay to work properly?

Accepted Answer

Yes, for full functionality including service fingerprinting and open port data. Without it, XRay only performs DNS subdomain enumeration, as stated in the README notes.

Question 3

How does XRay compare to Amass for subdomain discovery?

Accepted Answer

XRay integrates Shodan for additional intel and has a web UI, but Amass is more feature-rich, actively maintained, and doesn't rely on external APIs, making it better for comprehensive enumeration.

Question 4

Can XRay scan internal or private networks?

Accepted Answer

No, XRay is designed for public OSINT gathering using DNS and external APIs like Shodan, which only index public-facing assets. It's not suited for internal network reconnaissance.

Question 5

What services does XRay banner grab from?

Accepted Answer

XRay grabs banners from common services including HTTP, HTTPS, MySQL, SMTP, FTP, SSH, POP, and IRC, as listed in the 'Grabbers and Collectors' section of the README.

Question 6

How to use XRay with a proxy to hide my IP address?

Accepted Answer

The README mentions proxying as a suggestion but doesn't provide built-in support. You'd need to manually configure system-level proxies or containerize it, as shown in the Docker example for isolation.

xray

What is xray?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions