API tools faq
paste
Advertisement
TVT618

[Linux][Windows] Sublist3r (Raw)

TVT618
Dec 27th, 2017
81
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.95 KB | None | 0 0
raw download clone embed print report
  1. [Linux][Windows]
  2. Sublist3r - Fast subdomains enumeration tool for penetration testers
  3.  
  4. About Sublist3r
  5. Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting. Sublist3r enumerates subdomains using many search engines such as Google, Yahoo, Bing, Baidu, and Ask. Sublist3r also enumerates subdomains using Netcraft, Virustotal, ThreatCrowd, DNSdumpster, and ReverseDNS.
  6. subbrute was integrated with Sublist3r to increase the possibility of finding more subdomains using bruteforce with an improved wordlist. The credit goes to TheRook who is the author of subbrute.
  7.  
  8. Screenshots
  9.  
  10. Installation
  11. git clone https://github.com/aboul3la/Sublist3r.git
  12.  
  13. On Kali Linux
  14. apt update && apt -y install sublist3r
  15.  
  16. Recommended Python Version:
  17. Sublist3r currently supports Python 2 and Python 3.
  18. * The recommended version for Python 2 is 2.7.x
  19. * The recommened version for Python 3 is 3.4.x
  20.  
  21. Dependencies:
  22. Sublist3r depends on the requests, dnspython, and argparse python modules.
  23.  
  24. These dependencies can be installed using the requirements file:
  25. * Installation on Windows:
  26. c:\python27\python.exe -m pip install -r requirements.txt
  27.  
  28. * Installation on Linux
  29. sudo pip install -r requirements.txt
  30.  
  31. Alternatively, each module can be installed independently as shown below.
  32.  
  33. Requests Module (http://docs.python-requests.org/en/latest/)
  34. * Install for Windows:
  35. c:\python27\python.exe -m pip install requests
  36.  
  37. * Install for Ubuntu/Debian:
  38. sudo apt-get install python-requests
  39.  
  40. * Install for Centos/Redhat:
  41. sudo yum install python-requests
  42.  
  43. * Install using pip on Linux:
  44. sudo pip install requests
  45.  
  46. dnspython Module (http://www.dnspython.org/)
  47. * Install for Windows:
  48. c:\python27\python.exe -m pip install dnspython
  49.  
  50. * Install for Ubuntu/Debian:
  51. sudo apt-get install python-dnspython
  52.  
  53. * Install using pip:
  54. sudo pip install dnspython
  55.  
  56. argparse Module
  57. * Install for Ubuntu/Debian:
  58. sudo apt-get install python-argparse
  59.  
  60. * Install for Centos/Redhat:
  61. sudo yum install python-argparse
  62.  
  63. * Install using pip:
  64. sudo pip install argparse
  65.  
  66. for coloring in windows install the following libraries
  67. c:\python27\python.exe -m pip install win_unicode_console colorama
  68.  
  69. Usage
  70. Short Form Long Form Description
  71. -d --domain Domain name to enumerate subdomains of
  72. -b --bruteforce Enable the subbrute bruteforce module
  73. -p --ports Scan the found subdomains against specific tcp ports
  74. -v --verbose Enable the verbose mode and display results in realtime
  75. -t --threads Number of threads to use for subbrute bruteforce
  76. -e --engines Specify a comma-separated list of search engines
  77. -o --output Save the results to text file
  78. -h --help show the help message and exit
  79.  
  80. Examples
  81. * To list all the basic options and switches use -h switch:
  82. python sublist3r.py -h
  83.  
  84. * To enumerate subdomains of specific domain:
  85. python sublist3r.py -d example.com
  86.  
  87. * To enumerate subdomains of specific domain and show only subdomains which have open ports 80 and 443 :
  88. python sublist3r.py -d example.com -p 80,443
  89.  
  90. * To enumerate subdomains of specific domain and show the results in realtime:
  91. python sublist3r.py -v -d example.com
  92.  
  93. * To enumerate subdomains and enable the bruteforce module:
  94. python sublist3r.py -b -d example.com
  95.  
  96. * To enumerate subdomains and use specific engines such Google, Yahoo and Virustotal engines
  97. python sublist3r.py -e google,yahoo,virustotal -d example.com
  98.  
  99. Using Sublist3r as a module in your python scripts
  100. Example
  101. import sublist3r
  102. subdomains = sublist3r.main(domain, no_threads, savefile, ports, silent, verbose, enable_bruteforce, engines)
  103.  
  104. Function Usage:
  105. * domain: The domain you want to enumerate subdomains of.
  106. * savefile: save the output into text file.
  107. * ports: specify a comma-sperated list of the tcp ports to scan.
  108. * silent: set sublist3r to work in silent mode during the execution (helpful when you don't need a lot of noise).
  109. * verbose: display the found subdomains in real time.
  110. * enable_bruteforce: enable the bruteforce module.
  111. * engines: (Optional) to choose specific engines.
  112.  
  113. Example to enumerate subdomains of Yahoo.com:
  114. import sublist3r
  115. subdomains = sublist3r.main('yahoo.com', 40, 'yahoo_subdomains.txt', ports= None, silent=False, verbose= False, enable_bruteforce= False, engines=None)
  116.  
  117. License
  118. Sublist3r is licensed under the GNU GPL license. take a look at the LICENSE for more information.
  119.  
  120. Credits
  121. TheRook - The bruteforce module was based on his script subbrute.
  122. Bitquark - The Subbrute's wordlist was based on his research dnspop.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!