How To Install and use Knockpy

What is Knockpy

Knockpy is a very useful full tool by using this tool we can find subdomain takeover vulnerability and at the same time, this tool gives information about the domain and subdomain’s IP address and server.

How To Install

Open your terminal in kali Linux and enter these commands

git clone
cd knock
pip3 install -r requirements.txt

Here Is some example of this tool

usage: knockpy [-h] [-v] [--no-local] [--no-remote] [--no-http] [--no-http-code CODE [CODE ...]] [--dns DNS] [-w WORDLIST] [-o FOLDER] [-t SEC] [-th NUM] domain

full scan:	knockpy
ignore code:	knockpy --no-http-code 404 500 530
threads:	knockpy -th 50
timeout:	knockpy -t 2

show report:	knockpy --report knockpy_report/domain.com_yyyy_mm_dd_hh_mm_ss.json
plot report:	knockpy --plot knockpy_report/domain.com_yyyy_mm_dd_hh_mm_ss.json
csv report:	knockpy --csv knockpy_report/domain.com_yyyy_mm_dd_hh_mm_ss.json

set apikey:	knockpy --set apikey-virustotal=APIKEY
set timeout:	knockpy --set timeout=sec
set threads:	knockpy --set threads=num

positional arguments:
  domain                target to scan

  -h, --help            show this help message and exit
  -v, --version         show program's version number and exit
  --no-local            local wordlist ignore
  --no-remote           remote wordlist ignore
  --no-http             http requests ignore
  --no-http-code CODE [CODE ...]
                        http code list to ignore
  --dns DNS             use custom DNS ex.
  -w WORDLIST           wordlist file to import
  -o FOLDER             report folder to store json results
  -t SEC                timeout in seconds
  -th NUM               threads num

Leave a Reply