Skip to content

Commit

Permalink
Update README.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@RevoltSecurities
RevoltSecurities authored Nov 27, 2023
1 parent 7a3e08b commit d8d80e2
Showing 1 changed file with 54 additions and 77 deletions.
131 changes: 54 additions & 77 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,15 +7,14 @@ Subdominator is a powerful tool for passive subdomain enumeration during bug hun
#### Method 1:

```bash
git clone https://github.com/sanjai-AK47/Subdominator.git

cd Subdominator

pip install subdominator

subdominator -h

```
copy the config_keys.yaml configuration file from Subdominator github repository if you dont have in your machiene

## Dont Worry if the above installation failed there another method also there for you

#### Method2:
Expand All @@ -28,47 +27,29 @@ subdominator -h

```

# Note for old version Linux Users:

### Delete old version of Subdominator for Linux Executable file

```bash

sudo rm /usr/local/bin/subdominator

```
### Features Of Subdominator Version1.0.5

## After deleting the old version of Subdominator you can install the latest version of Subdominator with new Instructions mentioned above
- Subdominator resultings logic are improved

- Subdominator supports Output redirection to other tool that means supports oneliners for your Bug Bounty Reconnaissance

### Abilities Of Subdominator Version1.0.4
- Any OS users of subdominator can run the subdominator anywhere in their system

- Subdominator have upgraded with concurrency which better more faster now than before
- Easy Installation Through pip and also for easy Tools management

- Now The Subdominator configuration yaml file can store unlimited api keys for all services

- OSINT domains file mode bug fixed
### Oneliners with Subdominator:

- Recursive mode logical errors have been fixed with concurrency
Subdominator new features is it supports the onliners with other tools of [projectdiscovery](https://github.com/projectdiscovery) and My other tools [Subprober](https://github.com/sanjai-AK47/Subprober) and [httprober](https://github.com/sanjai-AK47/Httprober) to improver your reconnassaince with efficiently

- Now Subdominator can enumerate Subdomains for domains in a text file with more concurrency
```bash
subdominator -d apple.com -o subdominator_subdomains.txt -cf | httprober -c 50 | subprober --verbose --title --server --application-type --word-count -c 20 -o subprober.txt --silent
```

Result Images:

- Any OS users of subdominator can run the subdominator anywhere in their system

- Passive subdomain enumeration using multiple APIs and Open source interations
![Screenshot from 2023-11-27 10-53-10](https://github.com/sanjai-AK47/Subdominator/assets/119435129/ba37eaf8-3baa-45a5-869e-6a497a270931)

- Fast and comprehensive results for efficient bug hunting and for Information Gathering

- Easy-to-use with simple command-line options

- Config mode for loading API keys and custom configurations

- Automatic non-config mode if no custom configuration is provided

- Saving the results of Subdominator can be user defined or Subdominator will automatically saved the output

- Run The Subdominator excutable file anywhere and The configuration file be automatically detected in your machiene

### ALL Users Insatllation:

Expand All @@ -88,7 +69,7 @@ subdominator -h

``` bash

Subdominator is a powerful tool for subdomain enumeration. You can use it with various options to customize your subdomain discovery process.
[DESCRIPTION]: Subdominator is a powerful tool for subdomain enumeration. You can use it with various options to customize your subdomain discovery process.

usage: subdominator.py [-h] [-d DOMAIN] [-dL DOMAINS_LIST] [-nt] [-r] [-vrs] [-cf] [-o OUTPUT]

Expand All @@ -114,7 +95,7 @@ Options:

```
## [INFO]: Enabling the notification mode can help you When Subdominator do enumeration for list of domains or in recursive mode
[INFO]: Enabling the notification mode can help you When Subdominator do enumeration for list of domains or in recursive mode
## Dont forget to configure your yaml file with api keys:
Expand Down Expand Up @@ -204,6 +185,12 @@ Leakix: #Unlimited keys
Netlas: #Unlimited keys
- # Insert your Netlas API key here
Shodan: #Unlimited keys
- Insert your Shodan API key here
Hunter: #Unlimited keys
- Insert your Hunterhow API key here
Zoomeye-API: #Unlimited keys
Expand All @@ -222,40 +209,50 @@ Pushbullet-Notify: #limited keys is enough for pushbullet
### Set the Unlimited api keys Where its commented can holds Unlimited api keys
## Update your yaml file if you are existing user:
```yaml
Shodan: #Unlimited keys
- Insert your Shodan API key here
Hunter: #Unlimited keys
- Insert your Hunterhow API key here
```
## New Changes in yaml file
```bash
```yaml
[Note]: Users follow my instruction and syntax as same if u want add 1 or more keys for particular api services for this configuration file and Thankyou!
Dnsdumpter: #Unlimited keys and tokens
- zsdqYb0rvIVYh2uPHo5Yk4EljV9GEK3579fdg70s9dflW37Q5pZl8pvQHUHWav:Z488dfiasugf89692356bRfLyBxuTytPjA17aa2yA5ULO8HySZoG6ptOKoY
- # Csrf_Cookie:Csrf_Token
Redhunt: #Unlimited keys
- # Insert your Redhunt API key here
- VRp7HK3jWiRSnpPHo2rDWp09078074tv
Censys: #Unlimited censys-id and key as you want
- # Censys_API_ID:Censys_Secret_Token
- d573246-2343e-4072344-8773249-174cd6a0:Rdf2rII6cqkQ93425934KfZzzJ2q
Zoomeye-Auth: #Unlimited as u want
- # your_zoomeye_email:your_zoomeye_password
- yourZoomeyeMail@gmail.com:ZoomeyePassword
```
## [INFO]: Observe the change that for token, cookie, censys id and api, zoomeye auths are now changed so we can store unlimited keys and configuration and it will make easy and no more configuration after that . Which means spending time with configuration of api keys helps you in future
```
[INFO]: To check your configuration file syntax is right check [here](https://onlineyamltools.com/validate-yaml) by pasting your config_keys.yaml file to avoid yaml keys arrangements and syntax errors
### Information for Previous Users:
[INFO]: Observe the change that for token, cookie, censys id and api, zoomeye auths are now changed so we can store unlimited keys and configuration and it will make easy and no more configuration after that . Which means spending time with configuration of api keys helps you in future
Save your old keys in some file then update the keys to the new config_keys.yaml file After updating your new version of configuraton yaml file with respective api keys , id and email and passowords
Then you can delete the old version of yaml file.
### API Integrations and Credits
Expand All @@ -280,45 +277,25 @@ Claim your free API keys here:
- **Leakix**: [Leakix](https://leakix.net/)
- **Redhunt**: [Redhunt](https://https://devportal.redhuntlabs.com/)
### New Api Integrations and Credits:
- **Shodan** : [Shodan](https://shodan.io)
- **HunterHow** : [Hunter](https://hunter.how/)
### Dnsdumpter:
Dnsdumpster requires csrf token and cookie to obtain it visit **Dnsdumpter**: [Dnsdumpster](https://dnsdumpster.com)
Search any domain and Intercept the requests your burp that contains token and cookie. Copy that and paste in your yaml file
Example Image:
![Screenshot from 2023-07-24 21-47-10](https://github.com/sanjai-AK47/Subdominator/assets/119435129/d0aa5316-7698-4942-9512-2b3c3dc0a007)
After this all things you can run the Subdominator efficiently for subdomain enumeration
### Config Mode
Subdominator offers a convenient config mode that allows you to use your configured API keys and custom settings. You can enable the config mode by using the `--config` flag with the Subdominator command.
```bash
subdominator -d target.com --config
```
## Config example image:
![Screenshot from 2023-07-24 22-18-53](https://github.com/sanjai-AK47/Subdominator/assets/119435129/01939ba0-b7fe-4153-98a4-a189234caf4c)
![Screenshot from 2023-07-24 22-18-35](https://github.com/sanjai-AK47/Subdominator/assets/119435129/4f394f9a-ff32-429b-9781-5a41a112e36f)
### OSINT Mode
If you choose not to use the config mode, Subdominator will automatically switch to non-config mode. In this mode, Subdominator will make use of available public resources to collect a sufficient number of subdomains for your bug hunting needs.
## OSINT example image
![Screenshot from 2023-07-24 22-22-37](https://github.com/sanjai-AK47/Subdominator/assets/119435129/1eda42cd-8547-4b39-b548-18687479122f)
![Screenshot from 2023-07-24 22-22-17](https://github.com/sanjai-AK47/Subdominator/assets/119435129/f28462ce-dac8-47d6-a7a0-66d0bde1f373)
## Information:
Happy bug hunting with Subdominator! If you have any suggestions or feedback, feel free to contribute or open an issue on our GitHub repository: [Subdominator GitHub Repository](https://github.com/sanjai-AK47/Subdominator)
Subdominator a Subdomain enumeration tool builded for bug hunters and pentesters and other Cybersecurity people, it mainly builded for information gathering purpose
so [I'm](https://www.linkedin.com/in/d-sanjai-kumar-109a7227b/) not responsible for any illegal works and also support the Subdominator project with
a ⭐ and show your ❤️ and support guys!
Happy Hacking with Subdominator! If you have any suggestions or feedback, feel free to contribute or open an issue on our GitHub repository: [Subdominator GitHub Repository](https://github.com/sanjai-AK47/Subdominator) or can contact me through [LinkedIN](https://www.linkedin.com/in/d-sanjai-kumar-109a7227b/) for any issues or upgrades

0 comments on commit d8d80e2

Please sign in to comment.