This script takes domain name, working directory path, altdns.txt, huge list of DNS resolver and a list of Google DNS servers 18.104.22.168 & 22.214.171.124. And You get the output in the working directory as Aquatone Screenshots, a subdomains.lst list of subdomains found, a ip.lst list of IP addresses and Masscan XML
Tools in Path variable of your Linux:
Files from this repository:
resolvers.txt (This is a list of resolvers, you are free to use your own)
1. Install all prerequisites.
2. Clone this repository.
3. Used the commands mentioned in the Usage section.
The first argument is domain_name
The second argument is working_directory.
The third argument is DNS resolvers list placed in file "resolvers.txt"
The fourth argument is list of two Google DNS resolvers for last verification of subdomains is done by using Google Dns servers 126.96.36.199 & 188.8.131.52
The fifth argument is AltDNS wordlist called altdns.txt from this repository.
subdomains.lst -- All subdomains
masscan.xml -- Masscan output in XML
aquatone/ip -- Aquatone screenshots of IP addresses
aquatone/subs -- Aquatone screenshots of subdomains.lst
amass.lst -- Raw list by Amass
subfinder.lst -- Raw list by Subfinder
sublist3r.lst -- Raw list by Sublist3r
Sorting made faster for hard disk users
bash venom.sh example.com /root/example /root/tools/venom/resolvers.txt /root/tools/venom/resolve-verify.txt /root/tools/venom/altdns.txt