Thursday, August 25

Knock v1.5 - Subdomain Scanner , allows to bypass wildcard




Knock is a python script, written by Gianni 'guelfoweb' Amato, designed to enumerate subdomains on a target domain through a wordlist. This program is self contained, doesn't need to be installed in any particular location. All it needs is a recent version of Python 2.xOnly for use the Zone Transfer option (-zt) you must install the module dnspython, otherwise you can do without. If the name server allows zone transfers to occur, all the DNS names and IP addresses hosted by the name server will be returned in human-readable ASCII text.
Usage
$ python knock.py <option> <url>
Rapid Scan
Scanning with internal wordlist:
$ python knock.py <url>
Scanning with external wordlist:
$ python knock.py <url> <wordlist>
Options
-zt Zone Transfer discovery:
$ python knock.py -zt <url>
-dns Dns resolver:
$ python knock.py -dns <url>
-wc Wildcard testing:
$ python knock.py -wc <url>
-wc Wildcard bypass:
$ python knock.py -bw <stringexclude> <url>

0 comments:

Post a Comment

Related Posts Plugin for WordPress, Blogger...