CalvinBackup/PentestPilot
1
0
Fork 0
mirror of https://github.com/0xMarcio/PentestPilot.git synced 2026-02-12 21:12:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
461c14d676450f27777cab60871c9267812a8683
PentestPilot/bin/dns/subenum.sh
PentestPilot Bot 461c14d676 feat: bootstrap PentestPilot toolkit, docs, and orchestrators 
Initial commit of PentestPilot — AI‑assisted pentest recon and orchestration toolkit.\n\nHighlights:\n- Resumeable pipelines (full_pipeline) with manifest state and elapsed timings\n- Rich dashboard (colors, severity bars, durations, compact/json modes)\n- Web helpers: httpx→nuclei auto, tech routing + quick scanners\n- Agents: multi‑task orchestrator (web/full/ad/notes/post) with resume\n- AD/SMB, password utils, shells, transfer, privesc, tunnels\n- QoL scripts: proxy toggle, cleanup, tmux init, URL extractor\n- Docs: README (Quick Start + Docs Index), HOWTO (deep guide), TOOLKIT (catalog with examples)\n\nStructure:\n- bin/automation: pipelines, dashboard, manifest, resume, tech_actions\n- bin/web: routing, scanners, helpers\n- bin/ai: orchestrators + robust AI utils\n- bin/ad, bin/passwords, bin/shells, bin/transfer, bin/privesc, bin/misc, bin/dns, bin/scan, bin/windows, bin/hashes\n- HOWTO.md and TOOLKIT.md cross‑linked with examples\n\nUse:\n- settarget <target>; agent full <domain|hosts.txt>; dashboard --compact\n- See HOWTO.md for setup, semantics, and examples.
2025-10-08 16:00:22 +02:00

29 lines
857 B
Bash
Executable File
Raw Blame History

#!/usr/bin/env bash
set -euo pipefail
domain=${1:-}
[[ -z "$domain" ]] && { echo "Usage: $(basename "$0") <domain>" >&2; exit 1; }
outdir=${OUTDIR:-scans}
mkdir -p "$outdir"
ts=$(date +%Y%m%d_%H%M%S)
out="$outdir/subs_${domain}_${ts}.txt"
if command -v subfinder >/dev/null 2>&1; then
echo "[+] subfinder -d $domain"
subfinder -silent -d "$domain" | tee "$out"
elif command -v amass >/dev/null 2>&1; then
echo "[+] amass enum -passive -d $domain"
amass enum -passive -d "$domain" | tee "$out"
else
echo "[!] subfinder/amass not found; trying minimal brute with wordlist"
wl=${WORDLIST:-/usr/share/wordlists/seclists/Discovery/DNS/subdomains-top1million-5000.txt}
while read -r sub; do
host="$sub.$domain"
dig +short "$host" | head -n1 | grep -qE '.' && echo "$host"
done < "$wl" | tee "$out"
fi
echo "[+] Results saved to $out"
Reference in New Issue View Git Blame Copy Permalink