Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/guelfoweb/knock
Knock Subdomain Scan
https://github.com/guelfoweb/knock
Last synced: 2 days ago
JSON representation
Knock Subdomain Scan
- Host: GitHub
- URL: https://github.com/guelfoweb/knock
- Owner: guelfoweb
- License: gpl-3.0
- Created: 2014-02-11T14:36:13.000Z (almost 11 years ago)
- Default Branch: master
- Last Pushed: 2024-11-17T21:48:02.000Z (24 days ago)
- Last Synced: 2024-11-26T02:01:59.940Z (16 days ago)
- Language: Python
- Size: 507 KB
- Stars: 3,887
- Watchers: 134
- Forks: 859
- Open Issues: 63
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-bbht - knockpy - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Subdomain-enum)
- awesome-bbht - knockpy - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Subdomain-enum)
- awesome-bugbounty-tools - knock - Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist. (Recon / Subdomain Enumeration)
- WebHackersWeapons - knock
README
# Knock Subdomain Scan v7
:heavy_check_mark: Fast :heavy_check_mark: Easy :heavy_check_mark: Modular
**Knockpy** is a portable and modular `python3` tool designed to quickly enumerate subdomains on a target domain through *passive reconnaissance* and *dictionary scan*.
![knockpy7](https://github.com/guelfoweb/knock/assets/41558/b168f105-720f-4f21-aba1-5be5c0326957)
## Install via pip
```
pip install knock-subdomains
```## Install via git
```bash
git clone https://github.com/guelfoweb/knock.git
cd knock
pip install .
```## Usage
```
usage: KNOCKPY [-h] [-d DOMAIN] [-f FILE] [-v] [--dns DNS] [--useragent USERAGENT]
[--timeout TIMEOUT] [--threads THREADS] [--recon] [--bruteforce]
[--wordlist WORDLIST] [--json-output] [--list] [--report REPORT]knockpy v.7.0.1 - Subdomain Scan
https://github.com/guelfoweb/knockoptions:
-h, --help show this help message and exit
-d DOMAIN, --domain DOMAIN
domain to analyze
-f FILE, --file FILE domain list from file path
-v, --version show program's version number and exit
--dns DNS custom dns
--useragent USERAGENT
custom useragent
--timeout TIMEOUT custom timeout
--threads THREADS custom threads
--recon subdomain reconnaissance
--bruteforce subdomain bruteforce
--wordlist WORDLIST wordlist file to import
--bruteforce option required
--wildcard test wildcard and exit
--json shows output in json format
--save FOLDER folder to save report
--report REPORT shows saved report
```### Example
- Start scanning domain with `--recon` and `--bruteforce` options
```bash
knockpy -d domain.com --recon --bruteforce
```- Set API KEY: VirusTotal and Shodan
```bash
export API_KEY_VIRUSTOTAL=your-virustotal-api-key
export API_KEY_SHODAN=your-shodan-api-key
```- Save the report in a folder
```bash
knockpy -d domain.com --recon --bruteforce --save report
```- Shows saved report
```bash
knockpy --report domain.com_yyyy_aa_dd_hh_mm_ss.json
```### Import as module
```python
from knock import KNOCKPYdomain = 'domain.com'
results = KNOCKPY(domain, dns=None, useragent=None, timeout=None, threads=None, recon=True, bruteforce=True, wordlist=None)
print (results)
```