subNum

subNum Crawl all URLs and check for subdomain takeover vulnerability.

Main Features

  • Find All Subdomains.
  • Automatically crawl all URLs.
  • Automatically test all subdomains for subdomain .takeover vulnerability.
  • very first all everything automated.
  • Advanced error handling.
  • Multiprocessing support.

Documentation

install

git clone https://github.com/thenurhabib/subnum.git
cd subnum
chmod +x install.sh
sudo bash ./install.sh

Usage

python3 subnum.py --help

┌──(habib㉿kali)-[~/Desktop/subNum]
└─$ python3 subnum.py --help
| | | \ | | 1.0
___ _ _| |__ | \| |_ _ _ __ ___
/ __| | | | '_ \| . ` | | | | '_ ` _ \
\__ \ |_| | |_) | |\ | |_| | | | | | |
|___/\__,_|_.__/|_| \_|\__,_|_| |_| |_|
@thenurhabib
========================================

usage: subnum.py [-h] [-d DOMAIN] [-f FILE] [-o OUTPUT] [-p PROTOCOL]
Crawl all subdomains and check for subdomain takeover vulnerability.optional arguments:
-h, --help show this help message and exit
-d DOMAIN, --domain DOMAIN
Domain name of the taget [ex : example.com]
-f FILE, --file FILE Provide location of subdomain file.
-o OUTPUT, --output OUTPUT
Output unique subdomains of sublist3r and subfinder.
-p PROTOCOL, --protocol PROTOCOL
Set protocol for requests. Default is "http" [ex:
--protocol https]

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store