DNS
Last updated
Was this helpful?
Last updated
Was this helpful?
: Take a list of domains and probe for working http and https servers.
: A simple shell script to display or notify the user via email about domain status and expiry date.
Output:
Importing Amass Results into Maltego:
Import the CSV file with the correct Connectivity Table settings:
Interact.sh - an alternative to burp collaborator ;)
: Enumerate and check domains for Azure tenants.
: Altdns is a DNS recon tool that allows for the discovery of subdomains that conform to patterns.
: Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT.
: Aquatone is a tool for visual inspection of websites across a large number of hosts and is convenient for quickly gaining an overview of HTTP-based attack surface. To use it on Windows OS, you shoud download this version of . Once downloaded, aquatone must be executed with full paths to take the screenshots:
: The OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
: A virtual host scanner that can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages. First presented at SecTalks BNE in September 2017 ().
: This is a basic HTTP scanner that'll enumerate virtual hosts on a given IP address.
: Gobuster is a tool used to brute-force: URIs, DNS subdomains, Virtual Host names and Open AWS S3 buckets.
: A Python 3.5+ tool that uses asyncio to brute force domain names asynchronously.
: A subdomain enumeration tool to collect subdomains and analyzing domains performing advanced automated reconnaissance (framework). This tool can also be used for OSINT (Open-source intelligence) activities.
: Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.
All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers.
: A Subdomain Takeover tool written in Go designed to scan a list of subdomains concurrently and identify ones that are able to be hijacked.
: Subover is a Hostile Subdomain Takeover tool originally written in python but rewritten from scratch in Golang.
: Takeover by CNAME entry.
MassDNS is a simple high-performance DNS stub resolver targeting those who seek to resolve a massive amount of domain names in the order of millions or even billions. Without special configuration, MassDNS is capable of resolving over 350,000 names per second using publicly available resolvers.
: A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking out if subdomain takeover is possible. Also checks if the domain that a subdomain points to is expired.
A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking out if subdomain takeover is possible. Also checks if the domain that a subdomain points to is expired.
: puredns is a bash and python application that uses massdns to accurately perform DNS bruteforcing and mass resolving.
: Now, the Host is Mine! - Super Fast Sub-domain Takeover Detection!
: Shredos 64 bit for all Intel 64 bit processors as well as processors from AMD and other vendors which make compatible 64 bit chips. ShredOS - Secure disk erasure.