Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update subdomain sources #51

Open
5 of 7 tasks
edoardottt opened this issue Mar 9, 2022 · 6 comments
Open
5 of 7 tasks

Update subdomain sources #51

edoardottt opened this issue Mar 9, 2022 · 6 comments
Labels
enhancement New feature or request go good first issue Good for newcomers GopherZone hacktoberfest help wanted Extra attention is needed

Comments

@edoardottt
Copy link
Owner

edoardottt commented Mar 9, 2022
edited
Loading

@ExitoLab
Copy link

@edoardottt how will this work? Can you give examples

@edoardottt edoardottt added enhancement New feature or request good first issue Good for newcomers GopherZone help wanted Extra attention is needed labels Oct 12, 2023
@edoardottt
Copy link
Owner Author

edoardottt commented Oct 12, 2023
edited
Loading

Sure @ExitoLab .

Scilla with the subdomain subcommand tries to retrieve subdomains for a specific inputted domain:
e.g.

scilla subdomain -target google.com

The previous command performes a lot of requests against google.com subdomains.

If instead this command is used:

scilla subdomain -target google.com -db -no-check

The flag -db means that we're using API from some online sources in order to retrieve previously collected subdomains.
As example https://crt.sh/?q=%25.google.com&output=json.

At time of writing (12 oct 2023) scilla supports these online sources: anubis, bufferoverrun, crtsh, hackertarget, sonar, threatcrowd, threatminer and virustotal.

The problems are that some of these services stopped working and they are very few.

You can see here in the amass repo https://github.com/owasp-amass/amass/tree/5f1f7176bae60975c1e5be64273cb201f1bb37c3/resources/scripts/api or in the subfinder one https://github.com/projectdiscovery/subfinder/tree/main/v2/pkg/subscraping/sources how many of them are used.

The goal is to remove the not working ones and add new ones to the https://github.com/edoardottt/scilla/tree/main/pkg/opendb package in scilla. You can see in that directory how it works.

I'm gonna create a list of issues specific for each new online service to be added.

This was referenced Oct 12, 2023
Closed
Open
Closed
Closed
Open
Closed
Closed
@edoardottt edoardottt changed the title Add new subdomain sources Update subdomain sources Oct 12, 2023
@edoardottt edoardottt added the go label Oct 12, 2023
@iamshreeram
Copy link
Contributor

@edoardottt , As of today (10/15/23) Below aren't working -
bufferoverrun, Sonar Omnisint, threat Crowd

@ExitoLab , We can probably split the work on implementing subdomain sources - subdomaincenter, ahref, dnsrepo, grep.app;

@ExitoLab
Copy link

@iamshreeram sure, we can split the work. Which one do you want to work on

@iamshreeram
Copy link
Contributor

@ExitoLab , Im currently working on subdomaincenter. You can pick the next.

@edoardottt - Regarding grep.app as subdomain source -
From the Ada codebase, The API (https://grep.app/api/search?regexp=true&q=([_a-zA-Z0-9]{1}[_a-zA-Z0-9-]{0,61}[a-zA-Z0-9]{1}.google.com)) is failing with Forbidden Error.

But, this (https://grep.app/api/search?q=google.com&regexp=true) is returning a payload that is unrelated to the subdomain; Please have a look into this. thanks!

@edoardottt
Copy link
Owner Author

edoardottt commented Oct 17, 2023
edited
Loading

Got it...So this https://github.com/owasp-amass/amass/blob/5f1f7176bae60975c1e5be64273cb201f1bb37c3/resources/scripts/api/grepapp.ads#L24 is not working..

We can skip that for now :(

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request go good first issue Good for newcomers GopherZone hacktoberfest help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ExitoLab @iamshreeram @edoardottt