Another banger comes from . If you enjoyed the post on his tools, then you might want to stay. Let me tell you a little bit about how and why I discovered this tool. HTB Academy’s footprinting area required me to count a domain in order to obtain a specific FQDN for an IP. My walkthrough was using DNSEnum (stay tuned if that’s not what it is) and a Seclists wordlist. I found myself stuck like sap on the tree. The next step was to start looking in the familiar areas for anything, any thing that would help me reach my goal. This little treasure was discovered by me when I stumbled upon it on GitHub.
DNSHarvester
a very simple script. It has 40 lines of Python code. It includes two wordlists: one for long and one for short. However, it is also possible to use seclists in order to determine the domain. This tool allows you to query Google API and the lists provided to find valid subdomains for a domain. This tool uses socket and simplejson Python modules. It also calls socket.gethostbyaddr to verify the validity of the prefix against wordlists. If the name is not solvable, they are removed from this array.
There are over 2500 prefixes in the long text and only 60 in the short. You can also add the Seclists Discovery files to the location you saved the repo, and you can use those wordlists with a bit of editing. It was very useful in my Academy room, where I was able get the exact same information as I had using DNSEnum.
DNSHarvester Rating and Conclusion
The tool is nearly 10 years old and needed some tweaking. You will need to modify a few lines in the initial code, and the Google API address to make the tool work properly. Other than that DNSHarvester works great! This one gets a three out of five bunnies.
You want to know more about ethical hacking.
A networking hacking course is available at a level similar to OSCP. Get a special
Support LHN with a T-shirt and a Mug
Take a look at our selection
Are you aware of any other GitHub-related hacking tools?
If you’d like to see any other GitHub tools for ethical hacking, please get in touch via the .
