Tik (Тык) is a command-line tool written in Go for concurrently checking security headers (Content-Security-Policy and X-Frame-Options) of multiple domains from a list. This tool features a custom text display, a progress bar, and the ability to specify the number of concurrent threads for checking. The purpose of this tool is to identify clickjacking vulnerabilities, especially in a big scope.
- Concurrent checking of security headers for multiple domains.
- Progress bar to track the status of domain checking.
- Clone or Download: Clone this repository or download the code to your local machine.
- Run the tool: Run the tool using the following command:
go run main.go -f <filename> -t <thread-count>
You can either check the "Usage" or download already compiled code from "releases".
The input file should contain a list of domains, one per line, like this:
example.com
example2.com
example3.com
example4.com
This code uses the Go standard library, so there are no external dependencies to install.
This code is released under the MIT License.
Tik is developed by GrozdniyAndy of XSS.is.
Feel free to contribute, report issues, or suggest improvements by creating pull requests or issues in the GitHub repository. Enjoy using this simple clickjacking checker!