DNS Bruter is an open source multi-threaded penetration testing tool that automates the process of detecting subdomains of a domain.
- ZoneTransfers for nameservers
- Bruteforcing from wordlist
- Wildcard domains are supported!
You can download the latest tarball by clicking here or latest zipball by clicking here.
Preferably, you can download dnsbruter by cloning the Git repository:
git clone https://github.com/whoot/dnsbruter.git
DNSBruter works with Python version 3.x on Debian/Ubuntu and RedHat (and Windows) platforms.
On every platform you need following packages:
- dnspython
- Requests ---> Please use version 2.6.0 as there is an issue with SSL_v3 Certificates (see https://github.com/kennethreitz/requests/issues/2573)
- Colorama
I really, really don´t recommend to use it on Windows, because Windows has some fucked up timeout ratings! Use it on Linux, comment out the "search xxx" in /etc/resolv.conf and be happy :)
To get a list of all options use:
python3 dnsbruter.py -h
You can use DNSBruter with domains:
python3 dnsbruter.py -d DOMAIN [DOMAIN ...]
Or with a file with a list of domains:
python3 dnsbruter.py -f FILE
Example:
Find all subdomains of example.com (with default subdomainlist):
python3 dnsbruter.py -d example.com
Bug reports are welcome! Please report all bugs on the issue tracker.
DNSBruter - Automatic Subdomain Enumeration Tool
Copyright (c) 2015 Jan Rude
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/