What is Sub-domain enumeration?
Sub-domain means Sub-division of
As a Penetration Tester most of the time given a single domain to penetrate the website. Sub-
DNSDumpster uses open source intelligence resources to collect sub domain data. It can find potentially large number of sub-domains for a given domain
Virus Total run its own DNS replication service. User have to enter domain name or IP address of website and User will get the information of a domain.
3 Using Google Dork
Google dork is an advanced technique search over the internet. Using dork “site:” keyword user will get sub-domain of the website.
“site:*.example.com -www -jobs -store -us”
DNSRecon is a Python-based DNS enumeration script designed. DNS reconnaissance is an important step when mapping out domain resources, sub-domains, e-mail servers and so on.
Knockpy is a python tool designed to enumerate subdomains on a target domain through a wordlist.