xray icon indicating copy to clipboard operation
xray copied to clipboard

Published 20 hours ago verified publisher icon evilsocket

PassiveTotal Support for Subdomain/alternate domain Enumeration

Open 0x27 opened this issue 7 years ago • 4 comments

Leveraging an API key for the PassiveTotal (passivetotal.org) service would be super neat for grabbing more subdomains and related domains.

0x27 avatar Jul 13 '17 10:07 0x27

mmm do you have evidence that integrating passivetotal.org would be better than just improving the subdomain wordlist?

evilsocket avatar Jul 13 '17 10:07 evilsocket

I'll run a few, uh, tests and see if its worthwhile. I've seen some pretty weird stuff when enumerating using passivetotal on occasion though.

0x27 avatar Jul 13 '17 10:07 0x27

Thing is I'd like to avoid having 10000000 command line arguments with API keys n stuff if it's not strictly needed ... maybe it could be a good idea to perform a scan with the current wordlist and passivetotal.org on the same domain, then compare the results and steal what's missing :)

evilsocket avatar Jul 13 '17 10:07 evilsocket

Why not using a config file? Makes fiddling with command line args obsolete and IMHO handling much easier (also for use in a Docker Container, as those parameters can be read from the config file and/or env variables).

dhauenstein avatar Jul 19 '17 09:07 dhauenstein