Subdomain Enumeration Cheat Sheet: @yamakira

This document provides a cheat sheet for subdomain enumeration techniques including searching certificate transparency logs and DNS databases, zone walking using the NSEC and NSEC3 records, extracting subdomains from datasets, and performing zone transfers. It also includes instructions for installing the necessary utilities like ldns, nsec3walker, and links to relevant resources.

Uploaded by

Irvin.Joker

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

166 views

Subdomain Enumeration Cheat Sheet: @yamakira

Uploaded by

Irvin.Joker

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 1

Subdomain enumeration cheat sheet

Certificate Transparency logs - search Zone walking - NSEC Zone walking - NSEC3 - nsec3walker
engines
$ ldns-walk @<nameserver> <domain> $ ./collect insecuredns.com >
https://crt.sh/ insecuredns.com.collect
$ ldns-walk @ns1.insecuredns.com
https://censys.io/ insecuredns.com $ ./unhash <
https://google.com/transparencyreport/https/ct/ insecuredns.com.collect >
Installing ldns utilities
$ sudo apt-get install ldnsutils # insecuredns.com.unhash
Extracting sub-domains from Rapid7 FDNS
On Ubuntu/Debian Installing nsec3walker on Ubuntu 16.04:
dataset
$ yum install ldns # On $ wget
$ zcat <dataset_name> | jq -r 'if (.name |
Redhat/CentOS https://dnscurve.org/nsec3walker-20
test("\\.example\\.com$")) then .name else
101223.tar.gz
empty end'
Zone transfer $ tar -xzf
$ zcat 20170204-fdns.json.gz | jq -
nsec3walker-20101223.tar.gz
$ dig AXFR @<nameserver> <domain>
r 'if (.name |
$ cd nsec3walker-20101223
$ dig AXFR @ns1.insecuredns.com
test("\\.example\\.com$")) then
$ make
insecuredns.com
.name else empty end'

Rapid7 · Forward DNS dataset

https://scans.io/study/sonar.fdns_v2

Bharath
@yamakira_
appsecco.com

CRTP-full Exam Report
100% (6)
CRTP-full Exam Report
23 pages
crtp-exam-update
No ratings yet
crtp-exam-update
10 pages
1 Data Sheet Nokia ONT G-2426G-A
No ratings yet
1 Data Sheet Nokia ONT G-2426G-A
4 pages
Windows Command Prompt A-N
From Everand
Windows Command Prompt A-N
Prometheus MMS
5/5 (2)
Subdomain Enumeration Cheat Sheet: @yamakira
No ratings yet
Subdomain Enumeration Cheat Sheet: @yamakira
1 page
Subdomain Enumeration Cheat Sheet: @yamakira
No ratings yet
Subdomain Enumeration Cheat Sheet: @yamakira
1 page
Duck DNS - Install
No ratings yet
Duck DNS - Install
3 pages
Ganpat Uni Assigment Solved Srijit-Das
No ratings yet
Ganpat Uni Assigment Solved Srijit-Das
4 pages
Linux Comands
No ratings yet
Linux Comands
24 pages
Active Directory Command Line One
No ratings yet
Active Directory Command Line One
9 pages
Amassive Leap in Host Discovery
No ratings yet
Amassive Leap in Host Discovery
23 pages
Installation of Freeradius
No ratings yet
Installation of Freeradius
7 pages
100% Work! Ubuntu+Freeradius2+CoovaChilli+Daloradius
67% (3)
100% Work! Ubuntu+Freeradius2+CoovaChilli+Daloradius
9 pages
RAC Commands
No ratings yet
RAC Commands
7 pages
Install Voucherbox
No ratings yet
Install Voucherbox
3 pages
How To Configure Samba As A Primary Domain Controller
No ratings yet
How To Configure Samba As A Primary Domain Controller
150 pages
reconsubdomains
No ratings yet
reconsubdomains
3 pages
Deploying A UPI Environment For OpenShift 4.1 On Vsphere
No ratings yet
Deploying A UPI Environment For OpenShift 4.1 On Vsphere
9 pages
CICD
No ratings yet
CICD
30 pages
ABD00 Notebooks Combined - Databricks
No ratings yet
ABD00 Notebooks Combined - Databricks
109 pages
Os Record Exp1 Senior
No ratings yet
Os Record Exp1 Senior
10 pages
Os Record Exp1 Mythra
No ratings yet
Os Record Exp1 Mythra
10 pages
Instalar Nexus + SSL Con Docker Compose
No ratings yet
Instalar Nexus + SSL Con Docker Compose
3 pages
Red Team vs. Blue Team On Aws: Teri Radichel Kolby Allen
No ratings yet
Red Team vs. Blue Team On Aws: Teri Radichel Kolby Allen
40 pages
Terminal Fedora x25
No ratings yet
Terminal Fedora x25
41 pages
Ash Op 1
No ratings yet
Ash Op 1
17 pages
Dc Micro Service Invest Notes
No ratings yet
Dc Micro Service Invest Notes
9 pages
Compatible Wireless Drivers Backports
No ratings yet
Compatible Wireless Drivers Backports
10 pages
Rancid Exercise
No ratings yet
Rancid Exercise
9 pages
Introduction To Conquestr
No ratings yet
Introduction To Conquestr
7 pages
Cloud Security and DevOps
No ratings yet
Cloud Security and DevOps
2 pages
A Personalized Guide To Installing Cassandra On My Local Computer
No ratings yet
A Personalized Guide To Installing Cassandra On My Local Computer
3 pages
Linux SAN Related Commands
No ratings yet
Linux SAN Related Commands
7 pages
Linux Basic Commands
100% (1)
Linux Basic Commands
287 pages
Drop Box
No ratings yet
Drop Box
2,828 pages
317-Spectra_HTB_Official_writeup_Tamarisk
No ratings yet
317-Spectra_HTB_Official_writeup_Tamarisk
16 pages
Terminal Fedora x23
No ratings yet
Terminal Fedora x23
44 pages
dc-tools
No ratings yet
dc-tools
17 pages
Basic LINUX Commands That A DBA Should Know Oracle Database Experience
100% (2)
Basic LINUX Commands That A DBA Should Know Oracle Database Experience
47 pages
Quick HOWTO: Ch1: Network Backups With Rancid: Forums - Corrections - About - (C) Peter Harrison
100% (1)
Quick HOWTO: Ch1: Network Backups With Rancid: Forums - Corrections - About - (C) Peter Harrison
19 pages
Production Level CICD Pipeline Project Notes
No ratings yet
Production Level CICD Pipeline Project Notes
25 pages
Openshift sandbox_command-cheatsheet.md at master · nekop_openshift-sandbox · GitHub
No ratings yet
Openshift sandbox_command-cheatsheet.md at master · nekop_openshift-sandbox · GitHub
8 pages
Network Simulator (Ns-2) Workshop Mannual: SAT Infosys
No ratings yet
Network Simulator (Ns-2) Workshop Mannual: SAT Infosys
10 pages
Linux Basic Course Notes by Altnix
No ratings yet
Linux Basic Course Notes by Altnix
263 pages
Sourcecode Setting Up Jenkins Pipeline To Deploy Docker Swarm.
No ratings yet
Sourcecode Setting Up Jenkins Pipeline To Deploy Docker Swarm.
22 pages
M.A.M. School of Engineering: Siruganur, Trichy - 621 105
No ratings yet
M.A.M. School of Engineering: Siruganur, Trichy - 621 105
78 pages
Hands On Mahout - Mammoth Scale Machine Learning Presentation
No ratings yet
Hands On Mahout - Mammoth Scale Machine Learning Presentation
68 pages
Sub Domain Recon
No ratings yet
Sub Domain Recon
2 pages
UNix and Puppet Commands
No ratings yet
UNix and Puppet Commands
10 pages
Infrastructure Penetration Testing Checklist
100% (1)
Infrastructure Penetration Testing Checklist
6 pages
Linux Basic Course Notes by Altnix
100% (1)
Linux Basic Course Notes by Altnix
268 pages
R23 LAB MANUAL
100% (1)
R23 LAB MANUAL
8 pages
Oracle Installation Steps On Linux (Centos Version)
No ratings yet
Oracle Installation Steps On Linux (Centos Version)
31 pages
Pentest Dicas
No ratings yet
Pentest Dicas
21 pages
Install.ps1
No ratings yet
Install.ps1
5 pages
Master Cloud
No ratings yet
Master Cloud
6 pages
R语言基础入门指令 (tips)
No ratings yet
R语言基础入门指令 (tips)
14 pages
ultimate cicd prj
No ratings yet
ultimate cicd prj
30 pages
WI Install Nodejs dan Composer di Centos Stream 8
No ratings yet
WI Install Nodejs dan Composer di Centos Stream 8
8 pages
Kubernetes Made Easy
From Everand
Kubernetes Made Easy
Pankaj Joshi
No ratings yet
Evaluation of Some Intrusion Detection and Vulnerability Assessment Tools
From Everand
Evaluation of Some Intrusion Detection and Vulnerability Assessment Tools
Dr. Hedaya Mahmood Alasooly
No ratings yet
MID TERM Exam 2022 September BCA - BW Computer Network
No ratings yet
MID TERM Exam 2022 September BCA - BW Computer Network
2 pages
CISCO Chapter 7
No ratings yet
CISCO Chapter 7
96 pages
Configuring REP
No ratings yet
Configuring REP
14 pages
UTM Firewalls: AR3050S and AR4050S
No ratings yet
UTM Firewalls: AR3050S and AR4050S
8 pages
MD6640 Cab Electrical Schematic-1
No ratings yet
MD6640 Cab Electrical Schematic-1
1 page
Soal MTCNA Olimpiade Mikrotik Versi Inggris
No ratings yet
Soal MTCNA Olimpiade Mikrotik Versi Inggris
32 pages
2020 12 02 - Log
No ratings yet
2020 12 02 - Log
95 pages
UNIT 5 - SNMP and RMON PDF
No ratings yet
UNIT 5 - SNMP and RMON PDF
60 pages
Mod 5 Eigrp
100% (3)
Mod 5 Eigrp
34 pages
Com - Yy.hiyo Com-Yy-Hiyo 2020 01 27 12 33
No ratings yet
Com - Yy.hiyo Com-Yy-Hiyo 2020 01 27 12 33
68 pages
DC Sec6
No ratings yet
DC Sec6
15 pages
Magic Packet Technology: White Paper
No ratings yet
Magic Packet Technology: White Paper
6 pages
Huawei Vs Cisco
No ratings yet
Huawei Vs Cisco
2 pages
Network Devices
No ratings yet
Network Devices
5 pages
CCNA Study Guide - Vir Lab 4 Lab Mapping
No ratings yet
CCNA Study Guide - Vir Lab 4 Lab Mapping
4 pages
Ccna Security Sba
No ratings yet
Ccna Security Sba
16 pages
PowerStore+3.0+PowerStore+X+Implementation+ +Participant+Guide (PDF) +
No ratings yet
PowerStore+3.0+PowerStore+X+Implementation+ +Participant+Guide (PDF) +
156 pages
Usb Note
No ratings yet
Usb Note
5 pages
3
No ratings yet
3
4 pages
NXLD90 Router Security Configuration Guide
No ratings yet
NXLD90 Router Security Configuration Guide
6 pages
Ruckus Command
No ratings yet
Ruckus Command
2 pages
Chapter 1
No ratings yet
Chapter 1
17 pages
How To Setup Failover and Load Balancing in PFSense
No ratings yet
How To Setup Failover and Load Balancing in PFSense
20 pages
【V6R22C00】Huawei HiSecEngine Eudemon9000E-X Series AI Firewall Datasheet
No ratings yet
【V6R22C00】Huawei HiSecEngine Eudemon9000E-X Series AI Firewall Datasheet
5 pages
Simplified Evpn Vxlan
No ratings yet
Simplified Evpn Vxlan
75 pages
SMTrace
No ratings yet
SMTrace
5 pages
AC How To Configure Huawei 802
No ratings yet
AC How To Configure Huawei 802
4 pages
CS610 Exam
No ratings yet
CS610 Exam
739 pages
Lecture 05
No ratings yet
Lecture 05
16 pages

Subdomain Enumeration Cheat Sheet: @yamakira

Uploaded by

Subdomain Enumeration Cheat Sheet: @yamakira

Uploaded by

Subdomain enumeration cheat sheet

Rapid7 · Forward DNS dataset

You might also like