Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How to use it??? #12

Open
62040132 opened this issue Apr 27, 2022 · 3 comments
Open

How to use it??? #12

62040132 opened this issue Apr 27, 2022 · 3 comments

Comments

@62040132
Copy link 

nisha@Nishant:/mnt/c/Users/nisha/Downloads/skanuvaty-master$ skanuvaty --target google.com --dns-resolver 10.64.0.1:53 --concurrency 16 --subdomains-file dns.txt
######################
### Target: "google.com"
### DNS resolver: 10.64.0.1:53
### Concurrency: 16
### Subdomains File: "dns.txt"
### Output File: "./skanuvaty.output.json"
### Verbose: false
######################
⠁ [00:00:00] [==============================] 0/0 (0s) (Found: )
######################
### Found subdomains: 0
  [00:00:00] [==============================] 0/0 (0s) (Found: 0)
Domain didn't have any addresses
RootDomain {
    name: "google.com",
    subdomains: [],
    addresses: [],
}

Add a proper guide please.
@Avasz
Copy link

Avasz commented May 9, 2022
edited
Loading

This is a subdomain enumeration tool.
You need a text file, dns.txt, as per guides which contains list of words that are possibly subdomains and provide it to the command.

For eg:
image

And run the command with:

skanuvaty --target google.com --dns-resolver 1.1.1.1:53 --concurrency 16 --subdomains-file dns.txt

The result would be like this

######################
### Target: "google.com"
### DNS resolver: 1.1.1.1:53
### Concurrency: 16
### Subdomains File: "dns.txt"
### Output File: "./skanuvaty.output.json"
### Verbose: false
######################
⠙ [00:00:00] [==========================>   ] 8/9 (0s) (Found: 3)
######################
### Found subdomains: 4
  [00:00:00] [==============================] 9/9 (0s) (Found: 4)
RootDomain {
    name: "google.com",
    subdomains: [
        Subdomain {
            name: "blog.google.com",
            addresses: [
                Address {
                    ip: 142.250.71.41,
                },
            ],
        },
        Subdomain {
            name: "mail.google.com",
            addresses: [
                Address {
                    ip: 216.58.196.165,
                },
            ],
        },
        Subdomain {
            name: "docs.google.com",
            addresses: [
                Address {
                    ip: 142.250.205.238,
                },
            ],
        },
        Subdomain {
            name: "chat.google.com",
            addresses: [
                Address {
                    ip: 142.250.193.110,
                },
            ],
        },
    ],
    addresses: [
        Address {
            ip: 142.250.182.14,
        },
    ],
}

I hope this makes it more clear. :)

For fun, you can use the subdomain wordlist from sublist3r, all credits to sublist3r team.
It is available here:
https://raw.githubusercontent.com/aboul3la/Sublist3r/master/subbrute/names.txt

Save it as name.txt. Then the command would be:

skanuvaty --target google.com --dns-resolver 1.1.1.1:53 --concurrency 16 --subdomains-file names.txt

Have fun! :)

@62040132
Copy link
Author

Thanks man ❤️. This guide made it easier to understand. It will help others also :)

@anthonp
Copy link

anthonp commented Jul 22, 2023

I'd love to help write a usage guide to merge with README. Regarding long-term use, besides keeping the executable in ~/Downloads/, where would you put this? /usr/local/bin? Regarding usage, what are the dependencies? It's not clear from the README. Thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Avasz @anthonp @62040132