Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Scala

Java

HTML

Clojure

Julia

Shell

C

Emacs Lisp

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Lua

PowerShell

Python

Ada

Julia

Go

Swift

Java

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇯🇴 Jordan

🇬🇳 Guinea

🇱🇻 Latvia

🇦🇷 Argentina

🇸🇩 Sudan

🇲🇷 Mauritania

🇳🇵 Nepal

All Countries Compare Countries

0xbharath/censys-enumeration

Stars
150
Rank 242,280 (Top 5 %)
Language
Python
Created over 6 years ago
Updated over 1 year ago

0xbharath/censys-enumeration

0xbharath

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys

Censys Enumeration

A script to extract subdomains/emails for a given domain using SSL/TLS certificates dataset on Censys
The output is in JSON format

Demo

Screenshots

Non verbose mode

Verbose mode

Sample JSON output

3rd party package dependency

Setup

Clone this repo

$ git clone [email protected]:yamakira/censys-enumeration.git

Install dependencies

$ pip install -r requirements.txt

Get Censys API ID and Censys API secret by creating a account on https://censys.io
Add Censys API ID and Censys API secret as CENSYS_API_ID & CENSYS_API_SECRET respectively to the OS environment variables. On Linux you can use a command similar to following to do this

$ export CENSYS_API_SECRET="iySd1n0l2JLnHTMisbFHzxClFuE0"

Check help menu

$ python censys_enumeration.py --help                                                                                                 
Usage: censys_enumeration.py [OPTIONS] FILE

Options:
  --verbose                       Verbose output
  --subdomains / --no-subdomains  Enable/Disable subdomain enumeration
  --emails / --no-emails          Enable/Disable email enumeration
  --help                          Show this message and exit.

Usage

Subdomain and email enumeration

$ python censys_enumeration.py domains.txt

Only subdomain enumeration

$ python censys_enumeration.py --no-emails domains.txt

Only email enumeration

$ python censys_enumeration.py --no-sudomains domains.txt

Verbose output

$ python censys_enumeration.py --verbose domains.txt

Output to custom file

$ python censys_enumeration.py --verbose --outfile results.json domains.txt

art-of-packet-crafting-with-scapy

A workshop on Packet Crafting using Scapy.

domains-from-csp

A script to extract domain names from Content Security Policy(CSP) headers

slurp

A blazing fast & feature rich Amazon S3 bucket enumerator.

slurp-old

A tool to enumerate S3 buckets manually or via certstream

assets-from-spf

A Python script to parse net blocks & domain names from SPF record

hardware-hacking-for-software-folks

datasploit

Utilizing various Open Source Intelligence (OSINT) tools and techniques that we have found to be effective, DataSploit brings them all into one place, correlates the raw data captured and gives the user, all the relevant information about the domain/email/ phone number/person, etc. It allows you to collect relevant information about a target which can expand your attack/defence surface very quickly. Sometimes it might even pluck the low hanging fruits for you without even touching the target and give you quick wins. More documentation here: http://datasploit.readthedocs.io/en/latest/.

scapy-scripts

A collection of scapy scripts, mostly security stuff.

python-network-programming

A workshop on network programming using the Python language.

nic.in-subdomain-tracker

A repo to track subdomains of nic.in

Effective-OpenSSH-Client-Usage-Workshop

A workshop on using OpenSSH client suite effectively

ctlog-utilities

Quick and dirty utilities I scribbled while digging through Certificate Transparency logs using crt.sh

GoI-subdomains-directory

List of subdomains/web apps by Government of India (GoI).

talks

Collection of slides/presentations from various talk that I have given in the past.

understanding-wmi

Repo for "Understanding WMI" talk given at Null, Bangalore March 10th 2018

dotfiles

A collection of personal dotfiles. i3wm, zsh and Dell XPS 13 9350

dns-for-penetration-testers-nullblr

DNS for penetration testers talk given at Nullblr June 2017.

yamakira.github.io

personal website/blog - http://disruptivelabs.in

pyliners

A collection of Python onliners

python-for-system-administration

A workshop on using Python language for system administration

python-foundations

Online notes for this workshop is available at -

protocols-for-penetration-testers

A meta repository to keep track of infomation about series of workshops, titled "Protocols for Penetration Testers"

insecuredns

insecuredns is a damn vulnerable DNS server to demonstrate common vulnerabilities in DNS implementations

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.