Waymap is a fast, practical web vulnerability scanner and web application security testing toolkit for:

SQL Injection (SQLi) testing (Boolean-based, Error-based, Time-based)
XSS scanning (reflected payload testing)
Command Injection / RCE scanning (safe marker-based checks)
LFI, CRLF Injection, CORS misconfiguration, Open Redirect
API Security Testing for REST and GraphQL (auth checks, introspection, basic abuse checks)
WordPress vulnerability scanning (WPScan API batch lookups for core/plugins/themes)
Waymap focuses on automation-friendly scanning with consistent output, session-based result saving, and secrets management.

What’s New in v7.2.0
Discovery & Target Acquisition (Google Dorking)
SearchAPI-powered Google dork discovery via --dork
Pagination support (page parameter) to fetch all available result pages
Domain blacklist support using config/waymap/domain_blacklist.txt
Saves only parameterized URLs (must include ? and =) for scan-ready targets
Secrets Management (API Keys)
Waymap supports storing secrets outside code:

config/waymap/secrets.json
searchapi_api_key
wpscan_api_token
Keys can be supplied via:

CLI (ex: --dork-api-key, --wpscan-token)
env vars (ex: SEARCHAPI_API_KEY, WPSCAN_API_TOKEN)
secrets file (preferred)
WordPress Vulnerability Profile (WPScan API)
Single profile: --profile wordpress
Lightweight WordPress detection gate before calling WPScan
Uses WPScan API v3 batch (POST /batch) with multiple lookup items
Saves output (including failures) to sessions//waymap_full_results.json
RCE / Command Injection Scanner
New scan type: --scan rce
Safe marker-based payloads (no destructive commands)
Works on parameterized URLs
Saves results to sessions//waymap_full_results.json