SubFinder

LSE toolsLSE toolsSubFinder (386)SubFinder (386)

Tool and Usage

Project details

License
MIT
Programming language
Golang
Author
Nizamul Rana
Latest release
1.0
Latest release date

Project health

60
This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

SubFinder is a tool to scan domains and discover subdomains. This may be useful during the reconnaissance phase of penetration testing where information is collected. Some subdomains may reveal sensitive data or point to interesting targets such as a backup location.

How it works

SubFinder uses various techniques to discover massive amounts of subdomains for a specified target. Such techniques include using passive sources, search engines, Pastebin snippets, internet archives, and others. It then uses a permutation module (inspired by altdns) to generate permutations and resolve them quickly using a powerful brute-forcing engine.

Usage and audience

SubFinder is commonly used for discovery of sensitive information, information gathering, penetration testing, reconnaissance, or security assessment. Target users for this tool are pentesters and security professionals.

Features

  • Command line interface
  • Customization and additions are possible
  • JSON output supported

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + Tool is modular and extendable
  • + More than 500 GitHub stars
  • + The source code of this software is available

Author and Maintainers

SubFinder is under development by Nizamul Rana.

Contributors

Installation

Supported operating systems

SubFinder is known to work on Linux.

SubFinder alternatives

Similar tools to SubFinder:

60

aiodnsbrute

Async DNS Brute, or aiodnsbrute, is a security tool to help with resolving many DNS entries and the related discovery.

60

Fierce

Fierce is a security tool that helps with DNS reconnaissance. It can locate non-contiguous IP space, but using DNS information.

64

altdns

Altdns is a security tool to discover subdomains during pentesting. Read this review to learn how it works and how to use it.

All SubFinder alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.