Important: This documentation covers Yarn 1 (Classic).
For Yarn 2+ docs and migration guide, see yarnpkg.com.

Package detail

sub-domain-scanner

gh-username33Apache-2.01.7.1

A CLI sub-domain discovery and analysis tool, intended to help discover and validate sub-domain takeover vulnerabilities

readme

sub-domain-scanner

Travis CI build status

Overview

A CLI sub-domain discovery and analysis tool, intended to help discover and validate sub-domain takeover vulnerabilities.

Prerequisites

  • NodeJS and NPM (NPM is included in the installers from nodejs.org)

Installation

npm install sub-domain-scanner

Using sub-domain-scanner

Running sub-domain-scanner
sub-domain-scanner arguments
Output from sub-domain-scanner

Semver

This project aims to maintain the semver version numbering scheme.

Changelog

See the changelog file

Contributing

Contributions are very welcome for fixes, improvements, new features, documentation, bug reports and/or ideas. Please create a Github issue initially so we can discuss and agree actions/approach - that should save time all-round.

The ideal way to receive contributions is via a Github Pull Request from the master branch. Please ensure that at least unit tests (you can run these via npm test) and if possible, linter rules (npm run lint).

If you find a sensitive, security issue with this application, please email me privately in the first instance: neil [dot] craig [at] thedotproduct [dot] org.

License

Apache-2.0 license

changelog

sub-domain-scanner changelog

v1.7.1

  • Build

v1.7.0

  • Fix handling of HTTP 404 response from testing

v1.6.0

  • Add YAML output

v1.5.0

  • ADd --verbose option to

v1.4.0

  • Add --bruteforce option to discover-hostnames

v1.3.0

  • Add CLI method discover-domains
  • Add auto wildcard output and dedupe output for discover-domains
  • Dedupe output from discover-hostnames
  • Add wildcard subsitution for common sub-domains for discover-hostnames output
  • Minor fixes and tidies
  • Try to fix Travis (this pkg requires node 11 currently)

v1.2.0

  • Add JSON output format for test-hostnames
  • Output all hostnames in test-hostnames
  • Fix cloudfront orphanage detection
  • Other minor tidies and fixes

v1.1.0

  • Add yargs wrapper to support nice CI arguments
  • Add hostname "must match" and "must not match" filtering and associated unit tests
  • Add/improve tests
  • Refactor

v1.0.1

  • Add some tests
  • Add Travis integration
  • Start on docs
  • Amend license file to Apache 2

v1.0.0

  • Initial version