{"id":13454640,"url":"https://github.com/infosec-au/altdns","last_synced_at":"2025-03-24T06:31:05.825Z","repository":{"id":38813793,"uuid":"56279389","full_name":"infosec-au/altdns","owner":"infosec-au","description":"Generates permutations, alterations and mutations of subdomains and then resolves them","archived":false,"fork":false,"pushed_at":"2024-04-25T10:39:46.000Z","size":63,"stargazers_count":2204,"open_issues_count":16,"forks_count":442,"subscribers_count":62,"default_branch":"master","last_synced_at":"2024-04-29T07:42:41.740Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/infosec-au.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2016-04-15T00:48:47.000Z","updated_at":"2024-06-14T01:32:35.838Z","dependencies_parsed_at":"2023-02-02T22:46:02.960Z","dependency_job_id":"78b1f31b-2275-4943-9328-f9810ea285ac","html_url":"https://github.com/infosec-au/altdns","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/infosec-au%2Faltdns","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/infosec-au%2Faltdns/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/infosec-au%2Faltdns/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/infosec-au%2Faltdns/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/infosec-au","download_url":"https://codeload.github.com/infosec-au/altdns/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":221939336,"owners_count":16904953,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T08:00:56.264Z","updated_at":"2024-10-28T21:31:04.209Z","avatar_url":"https://github.com/infosec-au.png","language":"Python","funding_links":[],"categories":["Other","\u003ca id=\"a76463feb91d09b3d024fae798b92be6\"\u003e\u003c/a\u003e侦察\u0026\u0026信息收集\u0026\u0026子域名发现与枚举\u0026\u0026OSINT","Python","Recon","Python (144)","Weapons","Python (1887)","\u003ca id=\"170048b7d8668c50681c0ab1e92c679a\"\u003e\u003c/a\u003e工具","Red Team","Tools by Category"],"sub_categories":["Open Redirect","\u003ca id=\"a695111d8e30d645354c414cb27b7843\"\u003e\u003c/a\u003eDNS","Subdomain Enumeration","Tools","XSS","Reconaissance","🌐 Website Monitoring \u0026 Analysis"],"readme":"# Altdns - Subdomain discovery through alterations and permutations\n\nAltdns is a DNS recon tool that allows for the discovery of subdomains that conform to patterns. Altdns takes in words that could be present in subdomains under a domain (such as test, dev, staging) as well as takes in a list of subdomains that you know of.\n\nFrom these two lists that are provided as input to altdns, the tool then generates a _massive_ output of \"altered\" or \"mutated\" potential subdomains that could be present. It saves this output so that it can then be used by your favourite DNS bruteforcing tool.\n\nAlternatively, the `-r` flag can be passed to altdns so that once this output is generated, the tool can then resolve these subdomains (multi-threaded) and save the results to a file.\n\nAltdns works best with large datasets. Having an initial dataset of 200 or more subdomains should churn out some valid subdomains via the alterations generated.\n\nFurther information on attack methodology and this tool release can be found here: https://docs.google.com/presentation/d/1PCnjzCeklOeGMoWiE2IUzlRGOBxNp8K5hLQuvBNzrFY/\n\n# Installation\n\nPython 2:\n\n`pip install py-altdns==1.0.0`\n\nPython 3:\n\n`pip3 install py-altdns==1.0.2`\n\n# Usage\n\n`# altdns -i subdomains.txt -o data_output -w words.txt -r -s results_output.txt`\n\n- `subdomains.txt` contains the known subdomains for an organization\n- `data_output` is a file that will contain the _massive_ list of altered and permuted subdomains\n- `words.txt` is your list of words that you'd like to permute your current subdomains with (i.e. `admin`, `staging`, `dev`, `qa`) - one word per line\n- the `-r` command resolves each generated, permuted subdomain\n- the `-s` command tells altdns where to save the results of the resolved permuted subdomains. `results_output.txt` will contain the final list of permuted subdomains found that are valid and have a DNS record.\n- the `-t` command limits how many threads the resolver will use simultaneously\n- `-d 1.2.3.4` overrides the system default DNS resolver and will use the specified IP address as the resolving server. Setting this to the authoritative DNS server of the target domain *may* increase resolution performance \n\n# Screenshots\n\n\u003cimg src=\"https://i.imgur.com/fkfZqkl.png\" width=\"600px\"/\u003e\n\n\u003cimg src=\"https://i.imgur.com/Jyfue26.png\" width=\"600px\"/\u003e\n\n# Show some love\n\nIf this tool was useful at all to you during DNS recon stages - we'd love to know. Any suggestions or ideas for this tool are welcome - just tweet [@infosec_au](https://twitter.com/infosec_au) or [@nnwakelam](https://twitter.com/nnwakelam) and we'll work on it.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finfosec-au%2Faltdns","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Finfosec-au%2Faltdns","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finfosec-au%2Faltdns/lists"}