{"id":13438452,"url":"https://github.com/aboul3la/Sublist3r","last_synced_at":"2025-03-20T06:30:20.438Z","repository":{"id":37318611,"uuid":"48010677","full_name":"aboul3la/Sublist3r","owner":"aboul3la","description":"Fast subdomains enumeration tool for penetration testers","archived":false,"fork":false,"pushed_at":"2024-08-02T00:00:30.000Z","size":1145,"stargazers_count":10197,"open_issues_count":229,"forks_count":2141,"subscribers_count":230,"default_branch":"master","last_synced_at":"2025-03-18T04:24:54.773Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/aboul3la.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2015-12-15T00:55:25.000Z","updated_at":"2025-03-18T00:49:46.000Z","dependencies_parsed_at":"2024-06-18T18:12:17.369Z","dependency_job_id":"2f61283a-e288-4e5c-902a-858b12de4550","html_url":"https://github.com/aboul3la/Sublist3r","commit_stats":{"total_commits":101,"total_committers":30,"mean_commits":"3.3666666666666667","dds":"0.48514851485148514","last_synced_commit":"729d649ec5370730172bf6f5314aafd68c874124"},"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aboul3la%2FSublist3r","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aboul3la%2FSublist3r/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aboul3la%2FSublist3r/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aboul3la%2FSublist3r/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/aboul3la","download_url":"https://codeload.github.com/aboul3la/Sublist3r/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244564777,"owners_count":20473128,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T03:01:05.642Z","updated_at":"2025-03-20T06:30:20.415Z","avatar_url":"https://github.com/aboul3la.png","language":"Python","funding_links":[],"categories":["Asset Discovery","Projects","Python","Subdomain-enum","Uncategorized","Tools","Network","Recon","[↑](#contents)Domain / Subdomain Discovery","Web Hacking","Python (1887)","扫描器、资产收集、子域名","2. [↑](#-content) Pentesting","Weapons","Web","BUG BOUNTY / SECURITY RESEARCH","others","Pentesting","Penetration Testing","Tools by Category","Programming/Comp Sci/SE Things"],"sub_categories":["Domain / Subdomain Discovery","Security and PenTesting","Uncategorized","Reconnaissance","Scanning / Pentesting","Subdomain Enumeration","Enumeration and Reconnaissance Tools","网络服务_其他","[↑](#-content) 2.10 Reconnaissance","Tools","🛰️ Enumeration and Reconnaissance Tools","Web Subdomains","Reconnaissance \u0026 Enumeration","Enumeration",".NET Decompilers","🌐 Website Monitoring \u0026 Analysis","Subdomain/DNS Stuff"],"readme":"## About Sublist3r \n\nSublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting. Sublist3r enumerates subdomains using many search engines such as Google, Yahoo, Bing, Baidu and Ask. Sublist3r also enumerates subdomains using Netcraft, Virustotal, ThreatCrowd, DNSdumpster and ReverseDNS.\n\n[subbrute](https://github.com/TheRook/subbrute) was integrated with Sublist3r to increase the possibility of finding more subdomains using bruteforce with an improved wordlist. The credit goes to TheRook who is the author of subbrute.\n\n## Screenshots\n\n![Sublist3r](http://www.secgeek.net/images/Sublist3r.png \"Sublist3r in action\")\n\n\n## Installation\n\n```\ngit clone https://github.com/aboul3la/Sublist3r.git\n```\n\n## Recommended Python Version:\n\nSublist3r currently supports **Python 2** and **Python 3**.\n\n* The recommended version for Python 2 is **2.7.x**\n* The recommended version for Python 3 is **3.4.x**\n\n## Dependencies:\n\nSublist3r depends on the `requests`, `dnspython` and `argparse` python modules.\n\nThese dependencies can be installed using the requirements file:\n\n- Installation on Windows:\n```\nc:\\python27\\python.exe -m pip install -r requirements.txt\n```\n- Installation on Linux\n```\nsudo pip install -r requirements.txt\n```\n\nAlternatively, each module can be installed independently as shown below.\n\n#### Requests Module (http://docs.python-requests.org/en/latest/)\n\n- Install for Windows:\n```\nc:\\python27\\python.exe -m pip install requests\n```\n\n- Install for Ubuntu/Debian:\n```\nsudo apt-get install python-requests\n```\n\n- Install for Centos/Redhat:\n```\nsudo yum install python-requests\n```\n\n- Install using pip on Linux:\n```\nsudo pip install requests\n```\n\n#### dnspython Module (http://www.dnspython.org/)\n\n- Install for Windows:\n```\nc:\\python27\\python.exe -m pip install dnspython\n```\n\n- Install for Ubuntu/Debian:\n```\nsudo apt-get install python-dnspython\n```\n\n- Install using pip:\n```\nsudo pip install dnspython\n```\n\n#### argparse Module\n\n- Install for Ubuntu/Debian:\n```\nsudo apt-get install python-argparse\n```\n\n- Install for Centos/Redhat:\n```\nsudo yum install python-argparse\n``` \n\n- Install using pip:\n```\nsudo pip install argparse\n```\n\n**for coloring in windows install the following libraries**\n```\nc:\\python27\\python.exe -m pip install win_unicode_console colorama\n```\n\n## Usage\n\nShort Form    | Long Form     | Description\n------------- | ------------- |-------------\n-d            | --domain      | Domain name to enumerate subdomains of\n-b            | --bruteforce  | Enable the subbrute bruteforce module\n-p            | --ports       | Scan the found subdomains against specific tcp ports\n-v            | --verbose     | Enable the verbose mode and display results in realtime\n-t            | --threads     | Number of threads to use for subbrute bruteforce\n-e            | --engines     | Specify a comma-separated list of search engines\n-o            | --output      | Save the results to text file\n-h            | --help        | show the help message and exit\n\n### Examples\n\n* To list all the basic options and switches use -h switch:\n\n```python sublist3r.py -h```\n\n* To enumerate subdomains of specific domain:\n\n``python sublist3r.py -d example.com``\n\n* To enumerate subdomains of specific domain and show only subdomains which have open ports 80 and 443 :\n\n``python sublist3r.py -d example.com -p 80,443``\n\n* To enumerate subdomains of specific domain and show the results in realtime:\n\n``python sublist3r.py -v -d example.com``\n\n* To enumerate subdomains and enable the bruteforce module:\n\n``python sublist3r.py -b -d example.com``\n\n* To enumerate subdomains and use specific engines such Google, Yahoo and Virustotal engines\n\n``python sublist3r.py -e google,yahoo,virustotal -d example.com``\n\n\n## Using Sublist3r as a module in your python scripts\n\n**Example**\n\n```python\nimport sublist3r \nsubdomains = sublist3r.main(domain, no_threads, savefile, ports, silent, verbose, enable_bruteforce, engines)\n```\nThe main function will return a set of unique subdomains found by Sublist3r\n\n**Function Usage:**\n* **domain**: The domain you want to enumerate subdomains of.\n* **savefile**: save the output into text file.\n* **ports**: specify a comma-sperated list of the tcp ports to scan.\n* **silent**: set sublist3r to work in silent mode during the execution (helpful when you don't need a lot of noise).\n* **verbose**: display the found subdomains in real time.\n* **enable_bruteforce**: enable the bruteforce module.\n* **engines**: (Optional) to choose specific engines.\n\nExample to enumerate subdomains of Yahoo.com:\n```python\nimport sublist3r \nsubdomains = sublist3r.main('yahoo.com', 40, 'yahoo_subdomains.txt', ports= None, silent=False, verbose= False, enable_bruteforce= False, engines=None)\n```\n\n## License\n\nSublist3r is licensed under the GNU GPL license. take a look at the [LICENSE](https://github.com/aboul3la/Sublist3r/blob/master/LICENSE) for more information.\n\n\n## Credits\n\n* [TheRook](https://github.com/TheRook) - The bruteforce module was based on his script **subbrute**. \n* [Bitquark](https://github.com/bitquark) - The Subbrute's wordlist was based on his research **dnspop**. \n\n## Thanks\n\n* Special Thanks to [Ibrahim Mosaad](https://twitter.com/ibrahim_mosaad) for his great contributions that helped in improving the tool.\n\n## Version\n**Current version is 1.0**\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faboul3la%2FSublist3r","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faboul3la%2FSublist3r","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faboul3la%2FSublist3r/lists"}