{"id":13762708,"url":"https://github.com/PentestPad/subzy","last_synced_at":"2025-05-10T15:31:48.308Z","repository":{"id":41376681,"uuid":"173371752","full_name":"PentestPad/subzy","owner":"PentestPad","description":"Subdomain takeover vulnerability checker","archived":false,"fork":false,"pushed_at":"2023-12-27T23:44:31.000Z","size":6906,"stargazers_count":876,"open_issues_count":4,"forks_count":143,"subscribers_count":22,"default_branch":"master","last_synced_at":"2024-05-19T06:06:12.006Z","etag":null,"topics":["bugbounty","cybersecurity","security-research","security-vulnerability","subdomain-takeover"],"latest_commit_sha":null,"homepage":"https://www.pentestpad.com","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/PentestPad.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2019-03-01T21:41:57.000Z","updated_at":"2024-05-17T12:25:23.000Z","dependencies_parsed_at":"2023-09-01T00:36:37.470Z","dependency_job_id":"77018636-3297-4451-9b43-0ec63839a725","html_url":"https://github.com/PentestPad/subzy","commit_stats":{"total_commits":51,"total_committers":12,"mean_commits":4.25,"dds":0.7058823529411764,"last_synced_commit":"a17cfe12dff71f71f467c438ff42c51ab5ad67cd"},"previous_names":["pentestpad/subzy","lukasikic/subzy"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PentestPad%2Fsubzy","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PentestPad%2Fsubzy/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PentestPad%2Fsubzy/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/PentestPad%2Fsubzy/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/PentestPad","download_url":"https://codeload.github.com/PentestPad/subzy/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224974208,"owners_count":17401100,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","cybersecurity","security-research","security-vulnerability","subdomain-takeover"],"created_at":"2024-08-03T14:00:54.518Z","updated_at":"2024-11-16T21:30:42.044Z","avatar_url":"https://github.com/PentestPad.png","language":"Go","readme":"## Subzy \n\nSubdomain takeover tool which works based on matching response fingerprints from [can-i-take-over-xyz](https://github.com/EdOverflow/can-i-take-over-xyz/blob/master/README.md) \n\n\u003ca href=\"https://twitter.com/intent/follow?screen_name=return_0x\"\u003e\n        \u003cimg src=\"https://img.shields.io/twitter/follow/return_0x.svg?style=social\u0026logo=twitter\"\n            alt=\"follow on Twitter\"\u003e\u003c/a\u003e\n\n\n![Subzy subdomain takeover](https://i.imgur.com/ggB8zKx.png \"Subzy subdomain takeover\")\n\n### Installation\n\n```bash\ngo install -v github.com/PentestPad/subzy@latest\n```\n\nIf `$GOBIN` and `$GOPATH` are [properly set](https://github.com/golang/go/wiki/SettingGOPATH#bash), execute the program as:\n\n```bash\n$ subzy --help\nSubdomain takeover tool\n\nUsage:\n  subzy [command]\n\nAvailable Commands:\n  help        Help about any command\n  run         Run subzy\n  version     Print subzy version\n\nFlags:\n  -h, --help   help for subzy\n\nUse \"subzy [command] --help\" for more information about a command.\n``` \n\nIf you get an error `exec format error: ./subzy`, you need to [install Golang](https://golang.org/doc/install) for your OS and compile the program by running `go build -o subzy main.go` which will generate new `subzy` binary file\n\n### Options\n\nOnly required flag for `run` subcommand(`r` short version) is either `--target` or `--targets`  \n\n`--target` (string) - Set single or multiple (comma separated) target subdomain/s  \n`--targets` (string) - File name/path to list of subdomains    \n`--concurrency` (integer) - Number of concurrent checks (default 10)    \n`--hide_fails` (boolean) - Hide failed checks and invulnerable subdomains (default false)    \n`--https` (boolean) - Use HTTPS by default if protocol not defined on targeted subdomain (default false)  \n`--timeout` (integer) - HTTP request timeout in seconds (default 10)  \n`--verify_ssl` (boolean) - If set to true, it won't check site with invalid SSL\n\n### Usage\n\nTarget subdomain can have protocol defined, if not `http://` will be used by default if `--https` not specifically set to true.\n\n-  List of subdomains\n   - ````./subzy run --targets list.txt````\n\n- Single or multiple targets \n  - ```./subzy run --target test.google.com```\n  - ```./subzy run --target test.google.com,https://test.yahoo.com```\n\n### Command aliases\n\nEach `subzy` subcommand has its own short version. Running `subzy version` or `subzy v` is the same.\n\n* run - r\n* update - u\n* version - v\n","funding_links":[],"categories":["Miscellaneous","Weapons","漏洞扫描","Go"],"sub_categories":["Subdomain Takeover","Tools"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FPentestPad%2Fsubzy","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FPentestPad%2Fsubzy","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FPentestPad%2Fsubzy/lists"}