Changelog and What’s new in v1.0 ?
+ Fixed Sublist3r v1.0 on Windows Platform
+ Added New OSINT Sources
— Virustotal: Now sublist3r can enumerate subdomains through Virustotal
— SSL Certs: Now sublist3r can enumerate subdomains through the SSL certificates information.
— PassiveDNS: Now sublist3r can enumerate subdomains through the passive DNS records.
+ Added Port Scan Feature
— Now you can filter and scan the found subdomains against specific tcp ports using -p option.
+ Added Threading to DNSdumpster:
— Now DNSdumpster will show the live and working hosts using multi threading.
+ Improved the subbrute wordlist:
— Added new subdomains wordlist to subbrute based on Bitquark’s dnspop research
Sublist3r is python tool that is designed to enumerate subdomains of websites using search engines. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting. Sublist3r currently supports the following search engines: Google, Yahoo, Bing, Baidu, and Ask. More search engines may be added in the future. Sublist3r also gathers subdomains using Netcraft and DNSdumpster.
subbrute was integrated with Sublist3r to increase the possibility of finding more subdomains using bruteforce with an improved wordlist. The credit goes to TheRook who is the author of subbrute.
+ Requests library (http://docs.python-requests.org/en/latest/)
+ dnspython library (http://www.dnspython.org/)
git clone https://github.com/aboul3la/Sublist3r.git
Install dependencies Ubuntu/Debian:
sudo apt-get install python-requests
sudo apt-get install python-dnspython
Install dependencies Centos/RedHat:
sudo yum install python-requests
sudo yum install python-dnspython
python sublist3r.py -d facebook.com (example)