Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/rundtstykker/subdomain-crawler-application-security-

A simple & lightweight domain crawler that uses a pre-defined wordlist to discover subdomains on specified domain
https://github.com/rundtstykker/subdomain-crawler-application-security-

bugbounty python subdomain

Last synced: 5 days ago
JSON representation

A simple & lightweight domain crawler that uses a pre-defined wordlist to discover subdomains on specified domain

Host: GitHub
URL: https://github.com/rundtstykker/subdomain-crawler-application-security-
Owner: rundtstykker
License: bsd-2-clause
Created: 2020-09-30T15:48:05.000Z (about 4 years ago)
Default Branch: master
Last Pushed: 2023-06-24T19:53:47.000Z (over 1 year ago)
Last Synced: 2024-09-24T19:23:18.149Z (about 2 months ago)
Topics: bugbounty, python, subdomain
Language: Python
Homepage:
Size: 4.88 KB
Stars: 2
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# subdomain-crawler
A simple & lightweight domain crawler that uses a pre-defined wordlist to discover subdomains on specified domain.

# application security
You may want to discover subdomains of a target domain to evaluate if there are vulnerable applications hosted on those subdomains. Take the following as an example:

In the Cookie HTTP header declartion
- Be mindful of the `Path` and `Domain` attributes

To set a cookie for `//company1.example.com/` only:

```
Set-Cookie: name=value; Path=/

```

- Omitting the *Domain* attribute makes the cookie only valid for the domain that it was set in (excluding subdomain). While declaring it will make it include the subdomain

**Meaning that if the Cookie header is not securely declared, a XSS vulerable application hosted on a subdomain will allow the cookie declared for the main application to be exposed by the XSS vector seen on the subdomain (unless you had declared HttpOnly)
**

## Getting Started
A great way to discover a given * scope on bug bounty program.

## Running the program
Written in python 2.7, make sure to use the appropriate interrupter.

## Example usage
python crawler.py -h tesla.com

## Attention
Please do not use this program where unauthorized.

## Credits

| | |
| ------------------------------------ | ----------- |
| **Author** | @bryanwei |

## License
See the [LICENSE](https://github.com/bryanweielio/subdomain-crawler/blob/master/LICENSE) file.