This script is a bash shell utility for performing comprehensive subdomain enumeration for a given domain. It's a reconnaissance tool that aggregates data from various public sources and uses multiple techniques to identify subdomains associated with the target domain, which is a common first step in the information gathering phase of a web application security assessment or penetration test.
- Debian based Linux
git clone https://github.com/Shirshakhtml/Subdom.git
cd SubDomz
chmod +x install.sh SubDomz
./install.sh
_____ __ ____
/ ___/ __ __ / /_ / __ \ ____ ________
\__ \ / / / // __ \ / / / // __ \ / __ __ \
___/ // /_/ // /_/ // /_/ // /_/ // / / / / /
/____/ \__,_//_.___//_____/ \____//_/ /_/ /_/
All in One Subdomain Enumeration Tool
Made with <3 by 0x3hIrsh8k
Options:
-d ==> Domain To enumerate
-o ==> Output file to save the Final Results
-h ==> Displays this help message and exit
-v ==> Displays this version and exit
- Subfinder
- Assetfinder
- Chaos
- Shuffledns
- Findomain
- Amass
- Gauplus
- Waybackurls
- Github-Subdomains
- Gitlab-Subdomains
- Crobat
- CTFR
- Cero
- Sublist3r
- Shodomain
- Censys-Subdomain-Finder
- Nmap
- Archive (Wayback Machine)
- BufferOver
- Crtsh
- Riddler
- CertSpotter
- JLDC
- HackerTarget
- Anubis
- Omnisint(Crobat)
This tool was inspired by @bing0o domains.sh script. Thanks to him for the great idea!