{"id":20985970,"url":"https://github.com/umutcamliyurt/subhunter","last_synced_at":"2025-05-14T17:32:28.179Z","repository":{"id":206459903,"uuid":"716827513","full_name":"umutcamliyurt/Subhunter","owner":"umutcamliyurt","description":"A fast subdomain takeover tool","archived":false,"fork":false,"pushed_at":"2023-11-10T00:41:54.000Z","size":21,"stargazers_count":32,"open_issues_count":0,"forks_count":12,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-06-19T11:32:20.665Z","etag":null,"topics":["bug-bounty","bug-bounty-tools","bugbounty","go","golang","infosec","penetration-testing","pentesting","security-tools","subdomain-takeover","takeover-subdomain"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/umutcamliyurt.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2023-11-10T00:39:56.000Z","updated_at":"2024-06-09T12:02:09.000Z","dependencies_parsed_at":"2023-11-10T11:26:44.124Z","dependency_job_id":"4511af54-b0e1-460e-b485-43055547532e","html_url":"https://github.com/umutcamliyurt/Subhunter","commit_stats":null,"previous_names":["nemesis0u/subhunter","n-e-m-e-s-1-s/subhunter","umutcamliyurt/subhunter"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/umutcamliyurt%2FSubhunter","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/umutcamliyurt%2FSubhunter/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/umutcamliyurt%2FSubhunter/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/umutcamliyurt%2FSubhunter/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/umutcamliyurt","download_url":"https://codeload.github.com/umutcamliyurt/Subhunter/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225304048,"owners_count":17453037,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bug-bounty","bug-bounty-tools","bugbounty","go","golang","infosec","penetration-testing","pentesting","security-tools","subdomain-takeover","takeover-subdomain"],"created_at":"2024-11-19T06:11:47.070Z","updated_at":"2024-11-19T06:11:47.528Z","avatar_url":"https://github.com/umutcamliyurt.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Subhunter\n## A fast subdomain takeover tool\n\n\u003cimg src=\"banner.png\" width=\"1300\"\u003e\n\n## Description:\n\nSubdomain takeover is a common vulnerability that allows an attacker to gain control over a subdomain of a target domain and redirect users intended for an organization's domain to a website that performs malicious activities, such as phishing campaigns,\nstealing user cookies, etc. It occurs when an attacker gains control over a subdomain of a target domain.\nTypically, this happens when the subdomain has a CNAME in the DNS, but no host is providing content for it.\nSubhunter takes a given list of subdomains and scans them to check this vulnerability.\n\n## Features:\n\n- Auto update\n- Uses random user agents\n- Built in Go\n- Uses a fork of fingerprint data from well known sources ([can-i-take-over-xyz](https://github.com/EdOverflow/can-i-take-over-xyz/blob/master/README.md))\n\n## Installation:\n\n### Option 1:\n\n[Download](https://github.com/Nemesis0U/Subhunter/releases) from releases\n\n### Option 2:\nBuild from source:\n\n    $ git clone https://github.com/Nemesis0U/Subhunter.git\n    $ go build subhunter.go\n\n## Usage:\n\n### Options:\n\n```\nUsage of subhunter:\n  -l string\n    \tFile including a list of hosts to scan\n  -o string\n    \tFile to save results\n  -t int\n    \tNumber of threads for scanning (default 50)\n  -timeout int\n    \tTimeout in seconds (default 20)\n```\n\n### Demo (Added fake fingerprint for POC):\n\n```\n./Subhunter -l subdomains.txt -o test.txt\n\n  ____            _       _                       _\n / ___|   _   _  | |__   | |__    _   _   _ __   | |_    ___   _ __\n \\___ \\  | | | | | '_ \\  | '_ \\  | | | | | '_ \\  | __|  / _ \\ | '__|\n  ___) | | |_| | | |_) | | | | | | |_| | | | | | | |_  |  __/ | |\n |____/   \\__,_| |_.__/  |_| |_|  \\__,_| |_| |_|  \\__|  \\___| |_|\n\n\nA fast subdomain takeover tool\n\nCreated by Nemesis\n\nLoaded 88 fingerprints for current scan\n\n-----------------------------------------------------------------------------\n\n[+] Nothing found at www.ubereats.com: Not Vulnerable\n[+] Nothing found at testauth.ubereats.com: Not Vulnerable\n[+] Nothing found at apple-maps-app-clip.ubereats.com: Not Vulnerable\n[+] Nothing found at about.ubereats.com: Not Vulnerable\n[+] Nothing found at beta.ubereats.com: Not Vulnerable\n[+] Nothing found at ewp.ubereats.com: Not Vulnerable\n[+] Nothing found at edgetest.ubereats.com: Not Vulnerable\n[+] Nothing found at guest.ubereats.com: Not Vulnerable\n[+] Google Cloud: Possible takeover found at testauth.ubereats.com: Vulnerable\n[+] Nothing found at info.ubereats.com: Not Vulnerable\n[+] Nothing found at learn.ubereats.com: Not Vulnerable\n[+] Nothing found at merchants.ubereats.com: Not Vulnerable\n[+] Nothing found at guest-beta.ubereats.com: Not Vulnerable\n[+] Nothing found at merchant-help.ubereats.com: Not Vulnerable\n[+] Nothing found at merchants-beta.ubereats.com: Not Vulnerable\n[+] Nothing found at merchants-staging.ubereats.com: Not Vulnerable\n[+] Nothing found at messages.ubereats.com: Not Vulnerable\n[+] Nothing found at order.ubereats.com: Not Vulnerable\n[+] Nothing found at restaurants.ubereats.com: Not Vulnerable\n[+] Nothing found at payments.ubereats.com: Not Vulnerable\n[+] Nothing found at static.ubereats.com: Not Vulnerable\n\nSubhunter exiting...\nResults written to test.txt\n\n\n```\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fumutcamliyurt%2Fsubhunter","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fumutcamliyurt%2Fsubhunter","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fumutcamliyurt%2Fsubhunter/lists"}