Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/lijiejie/subdomainsbrute
A fast sub domain brute tool for pentesters
https://github.com/lijiejie/subdomainsbrute
Last synced: about 1 month ago
JSON representation
A fast sub domain brute tool for pentesters
- Host: GitHub
- URL: https://github.com/lijiejie/subdomainsbrute
- Owner: lijiejie
- Created: 2015-04-01T07:22:37.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2022-09-15T17:02:42.000Z (about 2 years ago)
- Last Synced: 2024-10-09T17:23:11.191Z (about 1 month ago)
- Language: Python
- Homepage:
- Size: 1.09 MB
- Stars: 3,466
- Watchers: 116
- Forks: 1,012
- Open Issues: 16
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# subDomainsBrute 1.5 #
A fast sub domain brute tool for pentesters, works with Python3.5+ or Python2.7.
高并发的DNS暴力枚举工具,支持Python3.6+和Python2.7,建议使用Python3.8+。
## Install ##
Python3.5+ users: `pip3 install dnspython==2.2.1 async_timeout`Python2.7 users: `pip install dnspython gevent`
## New Features
* Support find more domains from HTTPS cert
* Some extra code to work with Python2.7 / 3.6 / 3.7 / 3.8 / 3.10
* Try to use Proactor event loop under Windows## ScreenShot ##
使用大字典,扫描qq.com
![screenshot](screenshot.png)
## Usage ##
Usage: subDomainsBrute.py [options] target.com
Options:
--version show program's version number and exit
-h, --help show this help message and exit
-f FILE File contains new line delimited subs, default is
subnames.txt.
--full Full scan, NAMES FILE subnames_full.txt will be used
to brute
-i, --ignore-intranet
Ignore domains pointed to private IPs
-w, --wildcard Force scan after wildcard test failed
-t THREADS, --threads=THREADS
Num of scan threads, 500 by default
-p PROCESS, --process=PROCESS
Num of scan process, 6 by default
--no-https Disable get domain names from HTTPS cert, this can
save some time
-o OUTPUT, --output=OUTPUT
Output file name. default is {target}.txt## Change Log
* [2022-06-14] Version 1.5, some improvements
* 增加支持通过HTTPS证书获取子域名
* 更好的兼容性。使用 Python 2.7 / 3.6 / 3.7 / 3.8 / 3.10 测试
* Windows下通过Proactor事件循环缓解进程句柄限制
* [2022-05-06] 修复version check bug
* [2020-10-29] 增加支持强制扫描泛解析的域名,需要加 `-w` 参数
* [2020-10-26] 修复Windows下出现 `too many file descriptors`
* [2020-05-05] 增加了Python3.5+支持。Python3执行效率更高
* [2019-05-19]
* Add wildcard test
* Scan faster and more reliable, now can brute up to 3000 domains per second
* [2018-02-06]
* 添加多进程支持。 多进程 + 协程,提升扫描效率。
* 预处理了原字典中的占位符,提升扫描效率
* [2017-06-03] Bug fix: normal_lines remove deep copy issues, thanks @BlueIce
* [2017-05-04] 使用协程替代多线程; 使用优化级队列减小队列长度; 优化占位符支持