Skip to content

Home

Jump to bottom Edit New page
pmylund edited this page Jun 4, 2011 · 12 revisions

Features

  • Completely asynchronous; has no problem performing thousands of checks/connections at once with low overhead
  • Designed for batch scanning; takes files with lists of domains/hosts as input
  • Designed for use in cron jobs (using the --no-color --warnings-only parameters)

Usage

  • python domainscan.py domain.com
  • python domainscan.py domain1.com domain2.com [...]
  • python hostscan.py host.domain.com
  • python hostscan.py host1.domain.com host2.domain.com [...]

Advanced Usage

  • python hostscan.py host1.domain.com host2.domain.com -t 100 (Run scan with concurrent connection/action limit of 100 (default is 10) -- lower if this kills your connection/results in excessive timeouts)
  • python domainscan.py @mydomains.txt -c net.dns.ZoneTransferRefused (Check if the nameservers for any of the domains in mydomains.txt allow zone transfer/AXFR)
  • python domainscan.py @mydomains.txt -c net.dns.ZoneTransferRefused net.dns.MXRecordsExist (Check domains in mydomains.txt for both zone transfer and existing MX records)

Help

  • python domainscan.py/hostscan.py -h
  • List of checks: python domainscan.py/hostscan.py -c foo

Screenshots

Here are some screenshots showing usage of domainscan and hostscan (as they were on 2011-06-03):

Scrutinize Domainscan Screenshot

Scrutinize Hostscan Screenshot

Add a custom footer
Add a custom sidebar
Clone this wiki locally