• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
iGuRu

iGuRu

Real-time Technology News. Opinions & Tweaks

  • / news
  • / infosec
  • / tools
  • / tweaks
  • / dummies
  • / opinions
  • / support
  • / yourpost
home / News / Sudomy Subdomain analysis

Sudomy Subdomain analysis

13/10/2020 17:52 by Anastasis Vasileiadis

Sudomy is a tool for collecting subdomains and domain analysis with automated recognition. This tool can also be used for OSINT activities.

63212795 b8d57300 c133 11e9 882a f604d67819cc 800x219 - Sudomy Subdomain Analysis

Character

Active Method

Sudomy uses Gobuster tools due to its high speed in executing DNS Subdomain Bruteforce attack (wildcard support). The word list used comes from SecList Combined Lists (Discover / DNS) containing about 3 million entries

Passive Method

Looks for information through top third-party applications to show you the best results. The information pages are as follows:

https://dnsdumpster.com
https://web.archive.org
https://shodan.io
https://virustotal.com
https://crt.sh
https://www.binaryedge.io
https://securitytrails.com
https://sslmate.com/certspotter
https://censys.io
https://threatminer.org
http://dns.bufferover.run
https://hackertarget.com
https://www.entrust.com/ct-search/
https://www.threatcrowd.org
https://riddler.io
https://findsubdomains.com
https://rapiddns.io/
https://otx.alienvault.com/
https://index.commoncrawl.org/
https://urlscan.io/

Recon Worfklow

Sudomy Recon Workflow v1.1.8dev - Sudomy Subdomain Analysis

Detail information

——————————————————————————————————

- subdomain.txt - Subdomain list <$ DOMAIN (Target)
- httprobe_subdomain.txt - Validate Subdomain <subdomain.txt
- webanalyzes.txt - Identify technology scan <httprobe_subdomain.txt
- httpx_status_title.txt - title + statuscode + lenght <httprobe_subdomain.txt
- dnsprobe_subdomain.txt - Subdomain resolv <subdomain.txt
- Subdomain_Resolver.txt - Subdomain resolv (alt) <subdomain.txt
- cf-ipresolv.txt - Cloudflare scan <ip_resolver.txt
- Live_hosts_pingsweep.txt - Live Host check <ip_resolver.txt
- ip_resolver.txt - IP resolv list <Subdomain_Resolver :: dnsprobe
- ip_dbasn.txt - ASN Number Check <ip_resolver.txt
- vHost_subdomain.txt - Virtual Host (Group by ip) <Subdomain_Resolver.txt
- nmap_top_ports.txt - Active port scanning <cf-ipresolv.txt
- ip_dbport.txt - Passive port scanning <cf-ipresolv.txt

——————————————————————————————————
- Passive_Collect_URL_Full.txt - Full All Url Crawl (WebArchive, CommonCrawl, UrlScanIO)
——————————————————————————————————

- ./screenshots/report-0.html - Screenshoting report <httprobe_subdomain.txt
- ./screenshots/gowitness.db - Database screenshot <httprobe_subdomain.txt

User guides

  • Offline User Guide: Sudomy - Subdomain Enumeration and Analysis User Guide v1.0
  • Online User Guide: Subdomain Enumeration and Analysis User Guide - Up to date

Installation

$ pip install -r requirements.txt
git clone –recursive https://github.com/screetsec/Sudomy.git

Use

Sud⍥my - Fast Subdmain Enumeration and Analyzer
http://github.com/screetsec/sudomy

Usage: sud⍥my.sh [-h [–help]] [-s [–source]] [- d [–domain =]]

Example: sud⍥my.sh -d example.com
sud⍥my.sh -s Shodan, VirusTotal -d example.com
sud⍥my.sh -pS -rS -sC -nT -sS -d example.com

Optional Arguments:
-a, –all Running all Enumeration, no nmap & gobuster
-b, –bruteforce Bruteforce Subdomain Using Gobuster (Wordlist: ALL Top SecList DNS)
-d, –domain domain of the website to scan
-h, –help show this help message
-o, –outfile specify an output file when completed
-s, –source Use source for Enumerate Subdomain
-aI, –apps-identifier Identify technologies on website (ex: -aI webanalyze)
-dP, –db-port Collecting port from 3rd Party default = shodan
-eP, –extract-params Collecting URL Parameter from Engine
-tO, –takeover Subdomain TakeOver Vulnerabilty Scanner
-wS, –websocket WebSocket Connection Check
-cF, –cloudfare Check an IP is Owned by Cloudflare
-pS, –ping-sweep Check live host using methode Ping Sweep
-rS, –resolver Convert domain lists to resolved IP lists without duplicates
-sC, –status-code Get status codes, response from domain list
-nT, –nmap-top Port scanning with top-ports using nmap from domain list
-sS, –screenshot Screenshots a list of website (default: gowitness)
-nP, –no-passive Do not perform passive subdomain enumeration
-gW, –gwordlist Generate wordlist based on collecting url resources (Passive)
–Httpx Perform httpx multiple probers using retryablehttp
–Dnsprobe Perform multiple dns queries (dnsprobe)
–No-probe Do not perform httprobe
–Html Make report output into HTML

Application snapshots

maxresdefault - Sudomy Subdomain analysis

Video guide

 

You can download the application from here.

Sudomy Subdomain analysis was last modified: October 13, 2020, 5: 52 mm by Anastasis Vasileiadis

spread the news

  • Facebook
  • Twitter
  • Reddit
  • Printing
  • Email

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News


Competition: Newstag: Sudomy

You May Also Like

What is DuckDuckGo? Meet Google's alternative to Privacy
CCleaner Portable Pay attention to Piriform settings
Biden - Rosenworcel is internet neutrality back?

About Us Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Previous Post: « Facebook donates 1 XNUMX million to Bletchley Park
Next Post: Krita 4.4.0 Open Source image editing application »

Reader Interactions

Comment Policy:

IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators


Leave your comment
Ακύρωση απάντησης

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

 © 2021 · iGuRu.gr · ☢ · Keep It Simple Stupid Genesis theme

about  ·   get in touch  ·  rss  ·  sitemap  ·  cough

loading Cancel
Could not post post - check your email address!
Email verification failed, please try again
Your blog can not post posts via email.