https://github.com/topscoder/oldhost

oldhost is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.
https://github.com/topscoder/oldhost

bug-bounty bug-bounty-tools golang

Last synced: 5 months ago
JSON representation

oldhost is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.

• Host: GitHub
• URL: https://github.com/topscoder/oldhost
• Owner: topscoder
• License: other
• Created: 2023-06-04T15:03:16.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2023-06-17T15:14:19.000Z (over 2 years ago)
• Last Synced: 2025-04-03T05:31:49.389Z (11 months ago)
• Topics: bug-bounty, bug-bounty-tools, golang
• Language: Go
• Homepage:
• Size: 10.7 KB
• Stars: 5
• Watchers: 1
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# oldhost

`oldhost` is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.

## Installation

To install `oldhost`, follow the steps below:

- Ensure you have Go installed on your system.

- Run the following command to install the required packages:

```

go install -v github.com/topscoder/oldhost@latest

```

## Options

Run the script using the following command-line arguments:

```

oldhost -ips  -hosts  [-curl] [-silent]

```

- `-ips` (required): Specify an IP address or provide a filename containing IP addresses (one per line).

- `-hosts` (required): Specify the hostname or provide a filename containing hosts (one per line).

- `-curl` (optional): Output the results as Curl commands.

- `-silent` (optional): Run in silent mode, suppresses non-200 responses (except for content length).

View the results:

- The script will perform HTTP and HTTPS requests for each IP and host combination.

- The script will display the response status code and content length for each successful request.

- If the `-curl` flag is specified, Curl commands will be displayed instead of the response details.

## Example

Here is an example command to run `oldhost`:

```

oldhost -ips "192.168.0.1" -hosts "example.com" -curl

```

This command will perform HTTP and HTTPS requests to the specified IP addresses and hosts, displaying the results as Curl commands.

## Notes

- The script limits the number of concurrent calls to 5 for performance reasons. You can adjust this value by modifying the `semaphore` channel in the code.

- The script supports both individual strings and filenames as input for IP addresses and hosts. If a filename is provided, the script reads the IP addresses and hosts from the file (one per line).

- The script removes any trailing slashes from the hosts and tries to append default ports (":80" for HTTP and ":443" for HTTPS) to the host header.

- The script has a timeout of 1 second for each HTTP request.

- If the `-silent` flag is specified, the script will only print results for successful requests (200 status code). Use this flag to reduce the output and focus on relevant information.

## Contributing

Contributions are welcome! If you find a bug or want to suggest a new feature, please open an issue or submit a pull request.

## License

This project is licensed under the [MIT License](LICENSE).