columbus-server
subfinder
columbus-server | subfinder | |
---|---|---|
8 | 8 | |
21 | 9,434 | |
- | 2.5% | |
10.0 | 9.4 | |
9 months ago | 8 days ago | |
Go | Go | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
columbus-server
- Columbus Project - A fast, API-first subdomain discovery service with advanced queries
- Columbus Project - Advanced subdomain enumeration tool
- Columbus Project – A fast, API first subdomain discovery service
- Columbus Project - A blazingly fast, API first subdomain discovery service.
-
Introducing the Columbus Project - An open source append only database of known subdomains to to discover, store and serve subdomains as fast as possible.
Yes, this could be an issue.
subfinder
-
Subdomain.center – discover all subdomains for a domain
https://github.com/projectdiscovery/subfinder does this, but it explains all the methods and lets you choose to only do a passive scan.
-
Introducing Goctopus: open-source, state-of-the-art GraphQL endpoint discovery & fingerprinting tool.
Subdomain Enumeration: Goctopus uses DNS records APIs via subfinder to enumerate subdomains.
-
Subdomain enumeration.
Subfinder
-
Can authenticated internet-facing web app be discovered if not indexed by search engines?
My main source is Certificate Transparency, which is kind of a database of TLS certs created so far. But use external tools like Subfinder or Amass.
- Como saber todos os domínios que uma empresa tem?
- How to find out domain names registered by a particular domain registrar?
-
Intellingence-Resources
Subfinder - https://github.com/projectdiscovery/subfinder
-
Subdomain Enumeration
The best CLI tool for finding subdomains is subfinder. It is made by ProjectDiscovery who creates really powerful tools. They recently got funded $1.7 million so that the devs could work full time on developing and maintaining these tools.
What are some alternatives?
OrgASM - A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...
amass - In-depth attack surface mapping and asset discovery
FrameDomain - FrameDomain Framework - subdomains enumeration tool for penetration testers
assetfinder - Find domains and subdomains related to a given domain
Dome - Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
httprobe - Take a list of domains and probe for working HTTP and HTTPS servers
breach-parse - A tool for parsing breached passwords
gowitness - 🔍 gowitness - a golang, web screenshot utility using Chrome Headless
subby - An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records.
certificate-transparency - Auditing for TLS certificates.
RickNMortyCompose - A Jetpack compose android app based on Rick and Morty Graphql
keystore-explorer - KeyStore Explorer is a free GUI replacement for the Java command-line utilities keytool and jarsigner.