• Stars
    star
    283
  • Rank 146,066 (Top 3 %)
  • Language
    CSS
  • License
    GNU General Publi...
  • Created about 6 years ago
  • Updated 7 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).

subrake
SUBRAKE / SubTAP

A Subdomain Enumeration and Takeover toolki for Bug Bounty and Pentesters.

platform: linux Python: 3 PYPI: @subrake Release: v3.1 lisence

subrake

subrake

subrake

Key Features

  • OSINT + Subdomain Bruteforcing
  • Capable of handling outputs from multiple tools
  • Handling False Positives and Filters subdomains with same resolutions.
  • Checking for Server Banners and Ports
  • Incredibly Fast
  • Handling domains with larger scopes
  • Port Scanning

Documentation

Installation

Installing stable version directly from PYPI:

$ pip3 install subrake

Installing latest build:

$ git clone https://github.com/hash3liZer/Subrake.git
$ cd Subrake/
$ python3 setup.py install

Run after installation:

$ subrake --help

Usage

Subrake is highly flexible and is made to work under different situations. It can parse output files from multiple tools collectively. It does OSINT search alongside wordlist bruteforcing and before actual bruteforcing, it removes similar subdomains and false positives. It does also support a filter which when supplied allows you to seperate subdomains with same IP addresses in the final CSV result. Let's see some of the Subrake uses:

A simple run with OSINT results from search engines:

$ subrake -d google.com

Subrake with Multiple Threads:

$ subtake -d google.com -t 50

Subrake with OSINT results + SecLists subdomains list:

$ subrake -d google.com --wordlists SecLists/Discovery/DNS/namelist.txt

Subrake with OSINT results + Multiple SecLists subdomains list:
Note: Subdomains with similar names will automatically be filtered and counted as 1

$ subrake -d google.com --wordlists SecLists/Discovery/DNS/namelist.txt,SecLists/Discovery/DNS/dns-Jhaddix.txt

Subrake without OSINT + Output from multiple tools combined + IP Filtering:

$ domain="google.com"
$ subfinder -d $domain -nW -o $domain/1.txt && sublist3r -d $domain -o $domain/2.txt && cat $domain/* >> /tmp/output.txt
$ subrake -d $domain -w tmp/output.txt --filter --skip-search

Subrake without DNS + OSINT:

$ subrake -d google.com --skip-dns

Subrake with Port Scanning:
NOTE: The port 80,443 will be scanned by default for every host under HTTP/HTTPS banner. So, there's no need to specify them here

$ subrake -d google.com --ports 8080,8443,8000,23,445

Manual

Options:
   Args               Description                                    Default
   -h, --help           Show this manual                             NONE
   -d, --domain         Target domain. Possible
                        example: [example.com]                       NONE
   -w, --wordlists      Wordlists containing subdomains
                        to test. Multiple wordlists can
                        be specified.                                NONE
   -t, --threads        Number of threads to spawn                    25
   -o, --output         Store final subdomains in a specified file   NONE
   -c, --csv            Store output results in CSV format           NONE
   -p, --ports          Comma-seperated list of ports to scan.       NONE
   -s, --skip-search    Search for subdomains Online from various
                        sites.                                       FALSE
       --skip-subcast   Skip the usage of subcast module             FALSE
       --filter         Filter subdomains with same IP in CSV output FALSE
                        Helpful with larger scopes.
       --skip-dns       Skip initial DNS enumeration phase           FALSE
       --exclude-ips    Exclude specified IPs from the final results
                        Helpful in removing False Positives          NONE

Contribution

You can contribute to the project in many ways:

  • Report Bugs
  • Suggestions for making it better

Have any further Question? You can hit me up on Twitter and Email:
Twitter: @hash3liZer

More Repositories

1

WiFiBroot

A Wireless (WPA/WPA2) Pentest/Cracking tool. Captures & Crack 4-way handshake and PMKID key. Also, supports a deauthentication/jammer mode for stress testing
Python
944
star
2

SillyRAT

A Python based RAT 🐀 (Remote Access Trojan) for getting reverse shell 🖥️
Python
687
star
3

wifijammer

Wireless Jammer to Disconnect Nearby Access-Points and Stations.
Python
196
star
4

phishlets

Phishlets for Evilginx2 (MITM proxy Framework)
142
star
5

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Go
96
star
6

airpydump

Analyze Wireless Packets on the fly. Currently supporting three working Modes (Reader, Live, Stealth)
Python
51
star
7

Proxverter

Cross platform system wide proxy server & TLS Interception library for Python
Python
23
star
8

CVE-2019-9978

CVE-2019-9978 - (PoC) RCE in Social WarFare Plugin (<=3.5.2)
Python
20
star
9

Blunder

A Simple Keylogger with the ability of FTP Transfer and Local Storage
C++
19
star
10

BruteList

Combined Worldlist from various projects Including Seclists, fuzzdb and other Database Management Tools
PHP
16
star
11

locohunt

Search for Secrets and Other Confidential Information Through Directories and Files Based on Regex and Search Strings.
Python
10
star
12

Syntax-Checker

A Simple Syntax Checker to check for basic errors in a file. Written in C++
C++
6
star
13

hash3liZer

Hey, Its ME
6
star
14

profileo

🫠 A portfolio that i literally worked on for you 👉🏻👈🏻 CI/CD Integrated.
JavaScript
4
star
15

SubTap

Subdomain Takeover
Python
2
star
16

kysyandbox

Sandbox for KYPO Cyber Range (Testing)
1
star
17

tag

TAG is django powered something platform.
Python
1
star
18

netsand

A Simple network topology designed for KYPO Cyber Range (Scenario)
PHP
1
star
19

khatta

📔 A Khatta (urdu for ledger). Based on Urara 🌸 (A sweet Svelte based theme)
Svelte
1
star