Websites

Tools

https://github.com/yunxu1/dnsub - 支持多层域名暴力枚举

$ rm output.csv; ./dnsub_darwin_amd64 -d aabb.io -t 50 -depth 3 -o output.txt

https://github.com/shmilylty/OneForAll

git clone https://github.com/shmilylty/OneForAll.git
cd OneForAll/
python3 -m pip install -U pip setuptools wheel -i https://mirrors.aliyun.com/pypi/simple/
pip3 install -r requirements.txt -i https://mirrors.aliyun.com/pypi/simple/

python3 oneforall.py --target example.com run

python3 oneforall.py --target example.com --brute True run

# 取出 cname
awk -F ',' '{print $6}' results/domain.csv

https://github.com/guelfoweb/knock

git clone https://github.com/guelfoweb/knock.git
cd knock
pip3 install -r requirements.txt
python3 knockpy.py <DOMAIN>

# convert to .csv
python3 knockpy.py --csv knockpy_report/aabb.io_2022_03_06_10_16_55.json
awk -F ';' '{print $3}' knockpy_report/aabb.io_2022_03_06_10_16_55.csv

备注：无法支持multi-level 破解

https://github.com/aboul3la/Sublist3r

备注：无法支持multi-level 破解

Aggregate Domains

# de-duplicate domains, and combine domains
$ rm result*; cat * > result.txt; sort result.txt | uniq > result2.txt; tr '\n' ' ' < result2.txt

echo "<your_pwd>" | sudo openconnect -c ~/vpn.pem --user aabb --passwd-on-stdin -s 'vpn-slice --verbose <put your domain list here>' https://domain.com/

Reference

FEATURED TAGS

algorithm algorithmproblem architecturalpattern architecture aws c# cachesystem codis concurrentcontrol database dataformat datastructure debug design designpattern distributedsystem django docker domain engineering freebsd git golang grafana hackintosh hadoop hardware hexo http hugo ios iot java javaee javascript kafka kubernetes linux linuxcommand linuxio lock macos markdown microservices mysql nas network networkprogramming nginx node.js npm oop openwrt operatingsystem padavan performance programming prometheus protobuf python redis router security shell software-testing spring sql systemdesign truenas ubuntu vmware vpn windows wmware wordpress zookeeper

【Network】暴力穷举 Subdomains