Skip to content

matthernet/SubdomainFinder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
subdomainfinder.sh
subdomainfinder.sh
 
 

Repository files navigation

     __________
    | CRT      |
    |  ________|_
    | | SSL      |
    | |  ________|_
    | | | HTTPS    |    ______|\    subdomain1.target.com
    |_| |          |   |        \   subdomain2.target.com
      | |          |   |         \  subdomain3.target.com
      |_|          |   |         /  subdomain4.target.com
        |          |   |______  /   subdomain5.target.com
        |__________|          |/    subdomain6.target.com

SubdomainFinder

GitHub release License: GPL v3

Description

Passive scan to find subdomains by searching public records

Usage

Example of use: ./subdomainfinder.sh target.com

Sources

  • crt.sh
  • bufferover (The API requires a valid api-key, you can get one for free directly in the website)
  • subdomainfinder
  • DNSdumpster
  • SSLmate (The API requires a valid api-key, if you want to make more that 100 request per hour, you can get one for free directly in the website)

Notice:

The tool will create temporary files in the execution directory that will be removed after scanning ends

Licensing:

SubdomainFinder is licensed under the GNU General Public License version 3 (GNU GPL v3).

About

Find subdomains by searching public certificate records

Topics

osint scan subdomain bug-bounty recon bugbounty security-tools subdomain-scanner subdomain-enumeration subdomain-finder bugbounty-tool

Resources

Readme

License

GPL-3.0 license
Activity

Stars

14 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases 5

SubdomainFinder v0.5.0 Latest
Jun 11, 2024
+ 4 releases

Packages

No packages published

Languages