{"id":13459333,"url":"https://github.com/projectdiscovery/subfinder","last_synced_at":"2025-05-13T11:03:50.390Z","repository":{"id":37390565,"uuid":"127519518","full_name":"projectdiscovery/subfinder","owner":"projectdiscovery","description":"Fast passive subdomain enumeration tool.","archived":false,"fork":false,"pushed_at":"2025-05-12T14:19:44.000Z","size":9831,"stargazers_count":11651,"open_issues_count":14,"forks_count":1364,"subscribers_count":158,"default_branch":"dev","last_synced_at":"2025-05-13T11:02:57.634Z","etag":null,"topics":["bugbounty","hacking","osint","reconnaissance","subdomain-enumeration","subdomains"],"latest_commit_sha":null,"homepage":"https://projectdiscovery.io","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/projectdiscovery.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2018-03-31T09:44:57.000Z","updated_at":"2025-05-13T09:32:45.000Z","dependencies_parsed_at":"2024-01-05T13:40:04.664Z","dependency_job_id":"bf1615c1-9307-473c-99e1-28013869aa02","html_url":"https://github.com/projectdiscovery/subfinder","commit_stats":{"total_commits":1341,"total_committers":104,"mean_commits":12.89423076923077,"dds":0.7203579418344519,"last_synced_commit":"491b504676d837e6929a4a9dd0c49b4632cee3a9"},"previous_names":["ice3man543/subfinder","subfinder/subfinder"],"tags_count":53,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/projectdiscovery%2Fsubfinder","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/projectdiscovery%2Fsubfinder/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/projectdiscovery%2Fsubfinder/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/projectdiscovery%2Fsubfinder/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/projectdiscovery","download_url":"https://codeload.github.com/projectdiscovery/subfinder/tar.gz/refs/heads/dev","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253929359,"owners_count":21985802,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","hacking","osint","reconnaissance","subdomain-enumeration","subdomains"],"created_at":"2024-07-31T09:01:16.313Z","updated_at":"2025-05-13T11:03:50.347Z","avatar_url":"https://github.com/projectdiscovery.png","language":"Go","readme":"\u003ch1 align=\"center\"\u003e\n  \u003cimg src=\"static/subfinder-logo.png\" alt=\"subfinder\" width=\"200px\"\u003e\n  \u003cbr\u003e\n\u003c/h1\u003e\n\n\u003ch4 align=\"center\"\u003eFast passive subdomain enumeration tool.\u003c/h4\u003e\n\n\n\u003cp align=\"center\"\u003e\n\u003ca href=\"https://goreportcard.com/report/github.com/projectdiscovery/subfinder/v2\"\u003e\u003cimg src=\"https://goreportcard.com/badge/github.com/projectdiscovery/subfinder\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/projectdiscovery/subfinder/issues\"\u003e\u003cimg src=\"https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat\"\u003e\u003c/a\u003e\n\u003ca href=\"https://github.com/projectdiscovery/subfinder/releases\"\u003e\u003cimg src=\"https://img.shields.io/github/release/projectdiscovery/subfinder\"\u003e\u003c/a\u003e\n\u003ca href=\"https://twitter.com/pdiscoveryio\"\u003e\u003cimg src=\"https://img.shields.io/twitter/follow/pdiscoveryio.svg?logo=twitter\"\u003e\u003c/a\u003e\n\u003ca href=\"https://discord.gg/projectdiscovery\"\u003e\u003cimg src=\"https://img.shields.io/discord/695645237418131507.svg?logo=discord\"\u003e\u003c/a\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"#features\"\u003eFeatures\u003c/a\u003e •\n  \u003ca href=\"#installation\"\u003eInstall\u003c/a\u003e •\n  \u003ca href=\"#running-subfinder\"\u003eUsage\u003c/a\u003e •\n  \u003ca href=\"#post-installation-instructions\"\u003eAPI Setup\u003c/a\u003e •\n  \u003ca href=\"#subfinder-go-library\"\u003eLibrary\u003c/a\u003e •\n  \u003ca href=\"https://discord.gg/projectdiscovery\"\u003eJoin Discord\u003c/a\u003e\n\u003c/p\u003e\n\n---\n\n\n`subfinder` is a subdomain discovery tool that returns valid subdomains for websites, using passive online sources. It has a simple, modular architecture and is optimized for speed. `subfinder` is built for\ndoing one thing only - passive subdomain enumeration, and it does that very well.\n\nWe have made it to comply with all the used passive source licenses and usage restrictions. The passive model guarantees speed and stealthiness that can be leveraged by both penetration testers and bug bounty\nhunters alike.\n\n# Features\n\n\u003ch1 align=\"left\"\u003e\n  \u003cimg src=\"static/subfinder-run.png\" alt=\"subfinder\" width=\"700px\"\u003e\u003c/a\u003e\n  \u003cbr\u003e\n\u003c/h1\u003e\n\n- Fast and powerful resolution and wildcard elimination modules\n- **Curated** passive sources to maximize results\n- Multiple output formats supported (JSON, file, stdout)\n- Optimized for speed and **lightweight** on resources\n- **STDIN/OUT** support enables easy integration into workflows\n\n# Usage\n\n```sh\nsubfinder -h\n```\n\nThis will display help for the tool. Here are all the switches it supports.\n\n```yaml\nUsage:\n  ./subfinder [flags]\n\nFlags:\nINPUT:\n  -d, -domain string[]  domains to find subdomains for\n  -dL, -list string     file containing list of domains for subdomain discovery\n\nSOURCE:\n  -s, -sources string[]           specific sources to use for discovery (-s crtsh,github). Use -ls to display all available sources.\n  -recursive                      use only sources that can handle subdomains recursively (e.g. subdomain.domain.tld vs domain.tld)\n  -all                            use all sources for enumeration (slow)\n  -es, -exclude-sources string[]  sources to exclude from enumeration (-es alienvault,zoomeyeapi)\n\nFILTER:\n  -m, -match string[]   subdomain or list of subdomain to match (file or comma separated)\n  -f, -filter string[]   subdomain or list of subdomain to filter (file or comma separated)\n\nRATE-LIMIT:\n  -rl, -rate-limit int  maximum number of http requests to send per second\n  -rls value            maximum number of http requests to send per second for providers in key=value format (-rls \"hackertarget=10/s,shodan=15/s\")\n  -t int                number of concurrent goroutines for resolving (-active only) (default 10)\n\nUPDATE:\n  -up, -update                 update subfinder to latest version\n  -duc, -disable-update-check  disable automatic subfinder update check\n\nOUTPUT:\n  -o, -output string       file to write output to\n  -oJ, -json               write output in JSONL(ines) format\n  -oD, -output-dir string  directory to write output (-dL only)\n  -cs, -collect-sources    include all sources in the output (-json only)\n  -oI, -ip                 include host IP in output (-active only)\n\nCONFIGURATION:\n  -config string                flag config file (default \"$CONFIG/subfinder/config.yaml\")\n  -pc, -provider-config string  provider config file (default \"$CONFIG/subfinder/provider-config.yaml\")\n  -r string[]                   comma separated list of resolvers to use\n  -rL, -rlist string            file containing list of resolvers to use\n  -nW, -active                  display active subdomains only\n  -proxy string                 http proxy to use with subfinder\n  -ei, -exclude-ip              exclude IPs from the list of domains\n\nDEBUG:\n  -silent             show only subdomains in output\n  -version            show version of subfinder\n  -v                  show verbose output\n  -nc, -no-color      disable color in output\n  -ls, -list-sources  list all available sources\n\nOPTIMIZATION:\n  -timeout int   seconds to wait before timing out (default 30)\n  -max-time int  minutes to wait for enumeration results (default 10)\n```\n\n# Installation\n\n`subfinder` requires **go1.21** to install successfully. Run the following command to install the latest version:\n\n```sh\ngo install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest\n```\n\nLearn about more ways to install subfinder here: https://docs.projectdiscovery.io/tools/subfinder/install.\n\n## Post Installation Instructions\n\n`subfinder` can be used right after the installation, however many sources required API keys to work. Learn more here: https://docs.projectdiscovery.io/tools/subfinder/install#post-install-configuration.\n\n## Running Subfinder\n\nLearn about how to run Subfinder here: https://docs.projectdiscovery.io/tools/subfinder/running.\n\n## Subfinder Go library\n\nSubfinder can also be used as library and a minimal examples of using subfinder SDK is available [here](v2/examples/main.go)\n\n\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/table\u003e\n\n### Resources\n\n- [Recon with Me !!!](https://dhiyaneshgeek.github.io/bug/bounty/2020/02/06/recon-with-me/)\n\n# License\n\n`subfinder` is made with 🖤 by the [projectdiscovery](https://projectdiscovery.io) team. Community contributions have made the project what it is. See\nthe **[THANKS.md](https://github.com/projectdiscovery/subfinder/blob/main/THANKS.md)** file for more details.\n\nRead the usage disclaimer at [DISCLAIMER.md](https://github.com/projectdiscovery/subfinder/blob/main/DISCLAIMER.md) and [contact us](mailto:contact@projectdiscovery.io) for any API removal.\n","funding_links":[],"categories":["Go","Misc","开源类库","Recon","工具和库","Open source library","Other Awesome Lists","Weapons","Go (531)","扫描器、资产收集、子域名","\u003ca id=\"170048b7d8668c50681c0ab1e92c679a\"\u003e\u003c/a\u003e工具","bugbounty","Red Team","Web","Pentesting","OSINT","🔒 Security"],"sub_categories":["网络","Subdomain Enumeration","Golang","The Internet","DNS","Tools","网络服务_其他","\u003ca id=\"e945721056c78a53003e01c3d2f3b8fe\"\u003e\u003c/a\u003e子域名枚举\u0026\u0026爆破","Reconaissance","Web Subdomains","Reconnaissance","Vulnerable Apps","☸️ Kubernetes"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprojectdiscovery%2Fsubfinder","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fprojectdiscovery%2Fsubfinder","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprojectdiscovery%2Fsubfinder/lists"}