The Hacker News Logo
Subscribe to Newsletter

Knock v1.5 - Subdomain Scanner , allows to bypass wildcard

Knock v1.5 - Subdomain Scanner , allows to bypass wildcard

Knock is a python script, written by Gianni 'guelfoweb' Amato, designed to enumerate subdomains on a target domain through a wordlist. This program is self contained, doesn't need to be installed in any particular location. All it needs is a recent version of Python 2.xOnly for use the Zone Transfer option (-zt) you must install the module dnspython, otherwise you can do without. If the name server allows zone transfers to occur, all the DNS names and IP addresses hosted by the name server will be returned in human-readable ASCII text.
$ python <option> <url>
Rapid Scan
Scanning with internal wordlist:
$ python <url>
Scanning with external wordlist:
$ python <url> <wordlist>
-zt Zone Transfer discovery:
$ python -zt <url>
-dns Dns resolver:
$ python -dns <url>
-wc Wildcard testing:
$ python -wc <url>
-wc Wildcard bypass:
$ python -bw <stringexclude> <url>
Download Knock 1.5

Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.
Latest Stories
Best Deals

Newsletter — Subscribe for Free

Join over 500,000 information security professionals — Get the best of our cyber security coverage delivered to your inbox every morning.