Today we will see how we can use httpx , waybackurls and findomain for advance subdomain recon. First let’s how they are work and how we can install them in our machine.
Subscribe my youtube channel
httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
Download : https://github.com/projectdiscovery/httpx
Accept line-delimited domains on stdin, fetch known URLs from the Wayback Machine for
*.domain and output them on stdout.
Download : https://github.com/tomnomnom/waybackurls
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites by using passive online sources. It has a simple modular architecture and is optimized for speed. subfinder is built for doing one thing only – passive subdomain enumeration, and it does that very well.
Download : https://github.com/projectdiscovery/subfinder
Command : subfinder -d exmple.com | httpx –status-code –title
This command will show you status code and title of target .
Now Let’s how we can find all urls using waybackurls
cat domain.txt | waybackurl | httpx –title