Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/guelfoweb/knock

Knock Subdomain Scan
https://github.com/guelfoweb/knock

Last synced: about 2 months ago
JSON representation

Knock Subdomain Scan

Host: GitHub
URL: https://github.com/guelfoweb/knock
Owner: guelfoweb
License: gpl-3.0
Created: 2014-02-11T14:36:13.000Z (over 10 years ago)
Default Branch: master
Last Pushed: 2024-07-30T15:56:15.000Z (about 2 months ago)
Last Synced: 2024-07-30T16:12:52.580Z (about 2 months ago)
Language: Python
Size: 497 KB
Stars: 3,792
Watchers: 136
Forks: 852
Open Issues: 70
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-bbht - knockpy - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Subdomain-enum)
awesome-bbht - knockpy - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Subdomain-enum)
awesome-bugbounty-tools - knock - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Recon / Subdomain Enumeration)
WebHackersWeapons - knock

README

# Knock Subdomain Scan v7.0.1

:heavy_check_mark: Fast :heavy_check_mark: Easy :heavy_check_mark: Modular

**Knockpy** is a portable and modular `python3` tool designed to quickly enumerate subdomains on a target domain through *passive reconnaissance* and *dictionary scan*.

![knockpy7](https://github.com/guelfoweb/knock/assets/41558/b168f105-720f-4f21-aba1-5be5c0326957)

## Install via pip

```
pip install git+https://github.com/guelfoweb/knock.git
```

## Install via pip requirements.txt file

```
knockpy @ git+https://github.com/guelfoweb/knock.git
```

## Install via git

```bash
git clone https://github.com/guelfoweb/knock.git
cd knock
pip install .
```

## Usage

```
usage: KNOCKPY [-h] [-d DOMAIN] [-f FILE] [-v] [--dns DNS] [--useragent USERAGENT]
[--timeout TIMEOUT] [--threads THREADS] [--recon] [--bruteforce]
[--wordlist WORDLIST] [--json-output] [--list] [--report REPORT]

knockpy v.7.0.1 - Subdomain Scan
https://github.com/guelfoweb/knock

options:
-h, --help show this help message and exit
-d DOMAIN, --domain DOMAIN
domain to analyze
-f FILE, --file FILE domain list from file path
-v, --version show program's version number and exit
--dns DNS custom dns
--useragent USERAGENT
custom useragent
--timeout TIMEOUT custom timeout
--threads THREADS custom threads
--recon subdomain reconnaissance
--bruteforce subdomain bruteforce
--wordlist WORDLIST wordlist file to import
--bruteforce option required
--wildcard test wildcard and exit
--json shows output in json format
--save FOLDER folder to save report
--report REPORT shows saved report
```

### Example

- Start scanning domain with `--recon` and `--bruteforce` options

```bash
knockpy -d domain.com --recon --bruteforce
```

- Set API KEY: VirusTotal and Shodan

```bash
export API_KEY_VIRUSTOTAL=your-virustotal-api-key
export API_KEY_SHODAN=your-shodan-api-key
```

- Save the report in a folder

```bash
knockpy -d domain.com --recon --bruteforce --save report
```

- Shows saved report

```bash
knockpy --report domain.com_yyyy_aa_dd_hh_mm_ss.json
```

### Import as module

```python
from knock import KNOCKPY

domain = 'domain.com'

results = KNOCKPY(domain, dns=None, useragent=None, timeout=None, threads=None, recon=True, bruteforce=True, wordlist=None)

print (results)
```