Posts
Recon like a king for Bug Bounty
As we all know , If we want to hunt bugs , we have to get more and more information. With Recon we can:
- Increase Target
- Unpopular subdomains
1. Tool: SubBrute
https://github.com/TheRook/subbrute
usage: ./subbrute.py target.com > subdomain.txt
Now After having subdomains , I need to find further subdomains of subdomains
2. Tool: altdns
https://github.com/infosec-au/altdns
usage: .altdns.py -i subdomains.txt -o -w words.txt -s output.txt
Using above tool , you will get lot of subdomains
now we need to get all http status code for all subdomains
for that ;
go to https://httpstatus.io
now you have to check for all the domains that are redirecting , as all those domains are really important
0 comments:
Post a Comment