dns-hacking

Second Order – Subdomain Takeover Scanner Tool

April 30, 2020

Second Order Subdomain Takeover Scanner Tool scans web applications for second-order subdomain takeover by crawling the application and collecting URLs (and other data) that match specific rules or respond in a specific way. Using Second Order Subdomain Takeover Scanner Tool Command line options:

 -base string
       Base link to start scraping from (default "http://127.0.0.1")
 -config string
       Configuration file (default "config.json")
 -debug
       Print visited links in real-time to stdout
 -output string
       Directory to save results in (default "output")

-base string

Base link to start scraping from (default "http://127.0.0.1")

-config string

Configuration file (default "config.json")

-debug

Print visited links in real-time to stdout

-output string

Directory to save results in (default "output")

Example:

go run second-order.go -base https://example.com -config config.json -output example.com -concurrency 10

1	go run second-order.go -base https://example.com -config config.json -output example.com -concurrency 10

Config File for Second Order Subdomain Takeover Scanner Tool […]

Tweet27

Buffer14

41 Shares

CTFR – Abuse Certificate Transparency Logs For HTTPS Subdomains

October 29, 2018

CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds. You missed AXFR technique didn’t you? (Open DNS zone transfers), so how does it work? CTFR does not use dictionary attack or brute-force attacks, it just helps you to abuse Certificate Transparency Logs. What […]

Tweet77

Buffer14

91 Shares

altdns – Subdomain Recon Tool With Permutation Generation

February 7, 2018

Altdns is a Subdomain Recon Tool in Python that allows for the discovery of subdomains that conform to patterns. The tool takes in words that could be present in subdomains under a domain (such as test, dev, staging) as well as takes in a list of subdomains that you know of. From these two lists […]

Tweet61

Share13

Buffer40

114 Shares

Bluto – DNS Recon, Zone Transfer & Brute Forcer

July 17, 2017

Bluto is a Python-based tool for DNS recon, DNS zone transfer testing, DNS wild card checks, DNS brute forcing, e-mail enumeration and more. The target domain is queried for MX and NS records. Sub-domains are passively gathered via NetCraft. The target domain NS records are each queried for potential Zone Transfers. If none of them […]

Tweet1

Share35

Buffer38

74 Shares

SubBrute – Subdomain Brute-forcing Tool

May 20, 2016

SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain brute-forcing tool. Some of the magic behind SubBrute is that it uses open resolvers as a kind of proxy to circumvent DNS rate-limiting. This design also provides a layer of anonymity, as SubBrute does not send traffic directly […]

Tweet9

Share59

Buffer

68 Shares

Second Order – Subdomain Takeover Scanner Tool

CTFR – Abuse Certificate Transparency Logs For HTTPS Subdomains

altdns – Subdomain Recon Tool With Permutation Generation

Bluto – DNS Recon, Zone Transfer & Brute Forcer

SubBrute – Subdomain Brute-forcing Tool

Most Viewed Posts

Search

Recent Posts

dns-hacking

Footer

Most Viewed Posts

Search

Recent Posts

Tags