The Hacker News Logo
Subscribe to Newsletter

Knock v1.5 - Subdomain Scanner , allows to bypass wildcard

Knock v1.5 - Subdomain Scanner , allows to bypass wildcard

Knock is a python script, written by Gianni 'guelfoweb' Amato, designed to enumerate subdomains on a target domain through a wordlist. This program is self contained, doesn't need to be installed in any particular location. All it needs is a recent version of Python 2.xOnly for use the Zone Transfer option (-zt) you must install the module dnspython, otherwise you can do without. If the name server allows zone transfers to occur, all the DNS names and IP addresses hosted by the name server will be returned in human-readable ASCII text.
Usage
$ python knock.py <option> <url>
Rapid Scan
Scanning with internal wordlist:
$ python knock.py <url>
Scanning with external wordlist:
$ python knock.py <url> <wordlist>
Options
-zt Zone Transfer discovery:
$ python knock.py -zt <url>
-dns Dns resolver:
$ python knock.py -dns <url>
-wc Wildcard testing:
$ python knock.py -wc <url>
-wc Wildcard bypass:
$ python knock.py -bw <stringexclude> <url>
Download Knock 1.5

Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.
SHARE
Comments
Latest Stories
Best Deals

Newsletter — Subscribe for Free

Join over 500,000 information security professionals — Get the best of our cyber security coverage delivered to your inbox every morning.