Enumall is a Python-based tool that helps you do using only one by combining the abilities of Recon-ng and AltDNS.

Enumall - Subdomain Discovery Using Recon-ng & AltDNS  - Enumall Subdomain Discovery Using Recon ng AltDNS 640x272 - Subdomain Discovery Using Recon-ng & AltDNS

This gives you the ability to run multiple domains within the same session. The tool only has one module that needs an API key (/api/google_site) find instructions for that on the recon-ng wiki.

Setting up Enumall for Subdomain Discovery

Install recon-ng from Source, clone the Recon-ng repository:



Change into the Recon-ng directory:




Install dependencies:



Link the installation directory to /usr/share/recon-ng



Optionally (highly recommended) download:

AltDNS
– A good subdomain bruteforce list (example here)

Create the config.py file and specify the path to Recon-ng and as it showed in config_sample.py.

Basic Usage for Subdomain Enumeration




Also supports:



You can download Enumall here:

enumall-amster.zip

Or read more here.



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here