haccer / subjack Goto Github PK
View Code? Open in Web Editor NEWSubdomain Takeover tool written in Go
License: Apache License 2.0
Subdomain Takeover tool written in Go
License: Apache License 2.0
I get the below while trying a go get
[cloud_user@12c src]$ go get github.com/haccer/subjack
../github.com/haccer/subjack/subjack/requests.go:5:2: no Go files in /home/cloud_user/go/src/github.com/valyala/fasthttp
So I tried doing a go get github.com/valyala/fasthttp and then if it runs successfully, wanted to run the above command but it gives
[cloud_user@12c src]$ go get github.com/valyala/fasthttp
can't load package: package github.com/valyala/fasthttp: no Go files in /home/cloud_user/go/src/github.com/valyala/fasthttp
Can someone help with this ?
Hi !
I've been using subjack "massively" and it seems that the json file in the output gets corrupted from time to time, leading to corrupted JSON strings with misplaced characters such as:
false}]false}]]se}]lse}]e"
Or:
[{"subdomain":"za01-vsr.bcrs-vaults.ibm.com","vulnerable":false}]}]}]se}]]se}]lse}]]lse}]e}]vulnerable":false}].ibm.com","vulnerable":false},
It seems that it's always at the beginning of the file, after the first element of the array.
I'm using latest version of subjack on a docker container built from golang:alpine
.
Full file of one example:
[{"subdomain":"zts.athens.vip.ne1.yahoo.com","vulnerable":false}]false}]]se}]lse}]e":false}]2.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1018608.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"0.161.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"101.181.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"101.182.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"102.181.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1018707.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"102.182.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"100.181.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1023379.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1046519.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"104.181.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1045523.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false}]{"subdomain":"103.181.139.98.aprez.ostk.prod.bf1.yahoo.com","vulnerable":false},{"subdomain":"1040953.ostk.bm2.prod.bf1.yahoo.com","vulnerable":false}]
When I run the tool there is no results.json or results.txt is generated. When I run the tool with flag -v it shows all the subdomains are not vulnerable.
Is it like the results file is only generated when there is a vulnerable sub-domain ?
Can you show a sample output with vulnerable sub-domain ? It's for a script i'm writing to see what to expect when a vulnerable domain happens.
Well it is just that, fastly is never possible to takeover... i think it is an edge case that never happens and it is really annoying to get it all the time. Would it be possible to delete it from fingerprints?
I verified the file is available on below directory 2019/08/21 08:25:30 open /src/github.com/haccer/subjack/fingerprints.json: no such file or directory
still showing the error
Hi,
I tried cleaning go cache too. Still I am not getting any reply in terminal, cannot locate subjack in go/bin/ . what can I do to install subjack?
Im getting this error and i don't know what it is causing it. I get normal responses in the middle but idk what is this error
net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52632->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52636->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52640->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52648->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52654->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52666->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52688->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52702->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52716->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52740->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52786->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52832->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52888->[2610:a0:4:1::f1de]:43: read: connection reset by peer net.Error timeout=false, temp=false: read tcp [2600:3c02::f03c:92ff:fed5:7285]:52922->[2610:a0:4:1::f1de]:43: read: connection reset by peer
! ~/g/bin go get -u "github.com/haccer/subjack" 515ms Tue Jul 2 22:47:19 2019
github.com/miekg/dns
../src/github.com/miekg/dns/dnssec_keyscan.go:260:7: undefined: strings.Builder
../src/github.com/miekg/dns/msg_helpers.go:271:8: undefined: strings.Builder
../src/github.com/miekg/dns/serve_mux.go:43:9: undefined: strings.Builder
../src/github.com/miekg/dns/types.go:440:10: undefined: strings.Builder
../src/github.com/miekg/dns/types.go:464:10: undefined: strings.Builder
../src/github.com/miekg/dns/types.go:492:10: undefined: strings.Builder
../src/github.com/miekg/dns/types.go:513:29: undefined: strings.Builder
../src/github.com/miekg/dns/types.go:523:28: undefined: strings.Builder
I get this error when installing subjack in my digital ocean box.
fatal error: runtime: out of memory
runtime stack:
runtime.throw(0xe44a39, 0x16)
/usr/local/go/src/runtime/panic.go:774 +0x72
runtime.sysMap(0xc024000000, 0x4000000, 0x15c6958)
/usr/local/go/src/runtime/mem_linux.go:169 +0xc5
runtime.(*mheap).sysAlloc(0x159e940, 0x2000, 0x2000, 0x7ffed7bea668)
/usr/local/go/src/runtime/malloc.go:701 +0x1cd
runtime.(*mheap).grow(0x159e940, 0x1, 0xffffffff)
/usr/local/go/src/runtime/mheap.go:1255 +0xa3
runtime.(*mheap).allocSpanLocked(0x159e940, 0x1, 0x15c6968, 0x7fcaac69d5f8)
/usr/local/go/src/runtime/mheap.go:1170 +0x266
runtime.(*mheap).alloc_m(0x159e940, 0x1, 0x15c001c, 0x7fcaac69d5f8)
/usr/local/go/src/runtime/mheap.go:1022 +0xc2
runtime.(*mheap).alloc.func1()
/usr/local/go/src/runtime/mheap.go:1093 +0x4c
runtime.systemstack(0x45a4e4)
/usr/local/go/src/runtime/asm_amd64.s:370 +0x66
runtime.mstart()
/usr/local/go/src/runtime/proc.go:1146
goroutine 1 [running]:
runtime.systemstack_switch()
/usr/local/go/src/runtime/asm_amd64.s:330 fp=0xc01564cca0 sp=0xc01564cc98 pc=0x45a5e0
runtime.(*mheap).alloc(0x159e940, 0x1, 0x1001c, 0x0)
/usr/local/go/src/runtime/mheap.go:1092 +0x8a fp=0xc01564ccf0 sp=0xc01564cca0 pc=0x42502a
runtime.(*mcentral).grow(0x159f3f8, 0x0)
/usr/local/go/src/runtime/mcentral.go:255 +0x7b fp=0xc01564cd30 sp=0xc01564ccf0 pc=0x416f7b
runtime.(*mcentral).cacheSpan(0x159f3f8, 0x203008)
/usr/local/go/src/runtime/mcentral.go:106 +0x2fe fp=0xc01564cd90 sp=0xc01564cd30 pc=0x416a9e
runtime.(*mcache).refill(0x7fcab01c8008, 0x1c)
/usr/local/go/src/runtime/mcache.go:138 +0x85 fp=0xc01564cdb0 sp=0xc01564cd90 pc=0x416545
runtime.(*mcache).nextFree(0x7fcab01c8008, 0x1c, 0xc8, 0xe25900, 0xdb9d01)
/usr/local/go/src/runtime/malloc.go:854 +0x87 fp=0xc01564cde8 sp=0xc01564cdb0 pc=0x40b797
runtime.mallocgc(0xd0, 0xe25900, 0x1, 0xc023fff5f0)
/usr/local/go/src/runtime/malloc.go:1022 +0x793 fp=0xc01564ce88 sp=0xc01564cde8 pc=0x40c0d3
runtime.newobject(0xe25900, 0xc023fff5f0)
/usr/local/go/src/runtime/malloc.go:1151 +0x38 fp=0xc01564ceb8 sp=0xc01564ce88 pc=0x40c4c8
cmd/compile/internal/gc.(*Progs).NewProg(...)
/usr/local/go/src/cmd/compile/internal/gc/gsubr.go:84
cmd/compile/internal/gc.(*Progs).Prog(0xc00a23f650, 0xc023d51983, 0xc023fff520)
/usr/local/go/src/cmd/compile/internal/gc/gsubr.go:129 +0x2cc fp=0xc01564cf10 sp=0xc01564ceb8 pc=0xc2696c
cmd/compile/internal/gc.(*SSAGenState).Prog(0xc002284f00, 0xc023981983, 0xc023fff520)
/usr/local/go/src/cmd/compile/internal/gc/ssa.go:5169 +0x3c fp=0xc01564cf38 sp=0xc01564cf10 pc=0xcd29cc
cmd/compile/internal/gc.(*SSAGenState).Br(0xc002284f00, 0x311983, 0xc009b69e60, 0xc023fff520)
/usr/local/go/src/cmd/compile/internal/gc/ssa.go:5198 +0x39 fp=0xc01564cf90 sp=0xc01564cf38 pc=0xcd2af9
cmd/compile/internal/amd64.ssaGenBlock(0xc002284f00, 0xc009b6a480, 0xc009b6a000)
/usr/local/go/src/cmd/compile/internal/amd64/ssa.go:1236 +0x1c2 fp=0xc01564d038 sp=0xc01564cf90 pc=0xd4ee72
cmd/compile/internal/gc.genssa(0xc002ccc580, 0xc00a23f650)
/usr/local/go/src/cmd/compile/internal/gc/ssa.go:5422 +0xde0 fp=0xc01564d510 sp=0xc01564d038 pc=0xcd4080
cmd/compile/internal/gc.compileSSA(0xc002ccd080, 0x0)
/usr/local/go/src/cmd/compile/internal/gc/pgen.go:308 +0x3c2 fp=0xc01564d5f8 sp=0xc01564d510 pc=0xc71de2
cmd/compile/internal/gc.compile(0xc002ccd080)
/usr/local/go/src/cmd/compile/internal/gc/pgen.go:277 +0x33d fp=0xc01564d670 sp=0xc01564d5f8 pc=0xc719ad
cmd/compile/internal/gc.funccompile(0xc002ccd080)
/usr/local/go/src/cmd/compile/internal/gc/pgen.go:222 +0xc1 fp=0xc01564d6c8 sp=0xc01564d670 pc=0xc71561
cmd/compile/internal/gc.fninit(0xc00029d760, 0x2c, 0x2c)
/usr/local/go/src/cmd/compile/internal/gc/init.go:63 +0x4a8 fp=0xc01564d7e8 sp=0xc01564d6c8 pc=0xc36c88
cmd/compile/internal/gc.Main(0xe5bfe8)
/usr/local/go/src/cmd/compile/internal/gc/main.go:692 +0x394b fp=0xc01564dee8 sp=0xc01564d7e8 pc=0xc49a4b
main.main()
/usr/local/go/src/cmd/compile/main.go:51 +0xac fp=0xc01564df60 sp=0xc01564dee8 pc=0xd8019c
runtime.main()
/usr/local/go/src/runtime/proc.go:203 +0x21e fp=0xc01564dfe0 sp=0xc01564df60 pc=0x42f57e
runtime.goexit()
/usr/local/go/src/runtime/asm_amd64.s:1357 +0x1 fp=0xc01564dfe8 sp=0xc01564dfe0 pc=0x45c531
how to resolve this issue.....
Hi
I often see the following error.
Sorry, I do not know how to reproduce.
/usr/local/go/src/encoding/json/decode.go:371 +0xff
encoding/json.(*decodeState).object(0xc018224960, 0x98c280, 0xc018282fc8, 0x199, 0xc018224988, 0x7b)
/usr/local/go/src/encoding/json/decode.go:763 +0x1899
encoding/json.(*decodeState).value(0xc018224960, 0x98c280, 0xc018282fc8, 0x199, 0x98c280, 0xc018282fc8)
/usr/local/go/src/encoding/json/decode.go:381 +0x6e
encoding/json.(*decodeState).array(0xc018224960, 0x9237a0, 0xc018275f80, 0x16, 0xc018224988, 0x5b)
/usr/local/go/src/encoding/json/decode.go:560 +0x1ae
encoding/json.(*decodeState).value(0xc018224960, 0x9237a0, 0xc018275f80, 0x16, 0xc0243a3e00, 0x8bedbc)
/usr/local/go/src/encoding/json/decode.go:371 +0xff
encoding/json.(*decodeState).unmarshal(0xc018224960, 0x9237a0, 0xc018275f80, 0xc018224988, 0x0)
/usr/local/go/src/encoding/json/decode.go:179 +0x1fe
encoding/json.Unmarshal(0xc01827b300, 0x16bf, 0x18bf, 0x9237a0, 0xc018275f80, 0x0, 0x0)
/usr/local/go/src/encoding/json/decode.go:106 +0x123
github.com/haccer/subjack/subjack.fingerprints(0x7ffc147a1252, 0x37, 0xc01826f000, 0xc000082fb8, 0x2a)
/root/go/src/github.com/haccer/subjack/subjack/file.go:118 +0xf3
github.com/haccer/subjack/subjack.(*Subdomain).dns(0xc017cd2480, 0xc00006a4e0)
/root/go/src/github.com/haccer/subjack/subjack/dns.go:13 +0x4d
github.com/haccer/subjack/subjack.Process.func1(0xc00006a540, 0xc00006a4e0, 0xc000026150)
/root/go/src/github.com/haccer/subjack/subjack/subjack.go:39 +0x49
created by github.com/haccer/subjack/subjack.Process
/root/go/src/github.com/haccer/subjack/subjack/subjack.go:37 +0x148
goroutine 28 [runnable]:
reflect.Copy(0x92ff60, 0xc017f5dee0, 0x97, 0x92ff60, 0xc017f5d700, 0x197, 0x97)
/usr/local/go/src/reflect/value.go:1987 +0x42e
encoding/json.(*decodeState).array(0xc017f680a0, 0x9237a0, 0xc017f5d700, 0x16, 0xc017f680c8, 0x5b)
/usr/local/go/src/encoding/json/decode.go:550 +0x763
encoding/json.(*decodeState).value(0xc017f680a0, 0x9237a0, 0xc017f5d700, 0x16, 0xc024381e00, 0x8bedbc)
/usr/local/go/src/encoding/json/decode.go:371 +0xff
encoding/json.(*decodeState).unmarshal(0xc017f680a0, 0x9237a0, 0xc017f5d700, 0xc017f680c8, 0x0)
/usr/local/go/src/encoding/json/decode.go:179 +0x1fe
encoding/json.Unmarshal(0xc017f61980, 0x16bf, 0x18bf, 0x9237a0, 0xc017f5d700, 0x0, 0x0)
/usr/local/go/src/encoding/json/decode.go:106 +0x123
github.com/haccer/subjack/subjack.fingerprints(0x7ffc147a1252, 0x37, 0xc017f3b400, 0xc000082c18, 0x2a)
/root/go/src/github.com/haccer/subjack/subjack/file.go:118 +0xf3
github.com/haccer/subjack/subjack.(*Subdomain).dns(0xc017952660, 0xc00006a4e0)
/root/go/src/github.com/haccer/subjack/subjack/dns.go:13 +0x4d
github.com/haccer/subjack/subjack.Process.func1(0xc00006a540, 0xc00006a4e0, 0xc000026150)
/root/go/src/github.com/haccer/subjack/subjack/subjack.go:39 +0x49
created by github.com/haccer/subjack/subjack.Process
/root/go/src/github.com/haccer/subjack/subjack/subjack.go:37 +0x148
Ok, for the risk of being a total noob i have to ask this question... how do i get this to work?
I followed the instructions to install Go from here: https://golang.org/dl/
The following is pasted in my terminal (Kali Linux): go get github.com/Ice3man543/SubOver
When i then input this: ./subjack -w subdomains.txt -t 100 -timeout 30 -o results.txt -ssl it says "bash: ./subjack: No such file or directory ".
I have a textfile with the list of subdomains in it and called it subdomains.txt.
Sorry for this guys, i'm pretty sure it's easy to fix but i'm a little lost.
I'm unable to build the current version of AMass (outlined here: https://github.com/caffix/amass/issues/36). Although I can resolve this on AMass with release tags because this is a dependency in subjack I'm unable to build that without patching AMass directly in my gopath.
It would be good to have some exception handling within subjack to allow it to continue building even in the absence of a working amass build.
Hey,
So I'm getting FPs for Netlify. The page content check is fine, but it doesn't seem to be looking for the netlify cname record. An example of one is: cds.ie1.twilio.com
Thanks
Hey,
Subjack looks for "Hey There, This Is A Branded Short Domain." but bitly shows this regardless of whether the Branded short domain is available.
e.g. go.jet.com is flagged as vulnerable but you can't register it.
https://bitly.com/pages/landing/branded-short-domains-powered-by-bitly?bsd=go.jet.com
Thanks
C:\file>go build subjack.go
.\subjack.go:208:14: undefined: syscall.Rlimit
.\subjack.go:209:10: undefined: syscall.Getrlimit
.\subjack.go:209:28: undefined: syscall.RLIMIT_NOFILE
.\subjack.go:216:9: undefined: syscall.Setrlimit
.\subjack.go:216:27: undefined: syscall.RLIMIT_NOFILE
.\subjack.go:220:9: undefined: syscall.Getrlimit
.\subjack.go:220:27: undefined: syscall.RLIMIT_NOFILE
.\test.go:5:6: main redeclared in this block
previous declaration at .\subjack.go:226:6
I cant seem to get it to run. when I run the command, I get this error:
2020/07/26 02:45:24 open /src/github.com/haccer/subjack/fingerprints.json: no such file or directory
I have indeed checked and the file is there. I am running the command as root as well.
Anyone know how to fix this?
Hi.
I want to detect this string.
"Hello $DOMAIN welcome"
However, "domain" is a random string.
How can I add it?
Hello sir,
Can i install in windows7? if yes then please tell me procedure?
When compiling the latest version of subjack
from the git. See error below:
src/github.com/haccer/subjack/main.go:454:9: cannot use results (type chan *amass.AmassRequest) as type chan *amass.AmassOutput in field value
As seen here: EdOverflow/can-i-take-over-xyz#38
The Heroku detection needs extra checks apart from the one provided in the fingerprints file.
Now it's giving false positives in cases where the domain is .herokuapp.com
.
I get this error.=>2020/10/20 17:31:59 open subdomains.txt: no such file or directory
Hey,
first of all: Thanks for this open source tool!
Yesterday, I tried running it on Windows 7 (because it would have been comfortable for me) without success. It started out doing four subdomains from a larger subdomain list file and stopped then. I tried a very small list of subdomains afterwards to test line endings etc, and this time it is not logging any of them into the console in verbose mode.
Complete output from a large subdomain list: https://imgur.com/a/4Y0Ruzq
What I tried was updating my go version (currently installed: go1.10.3 windows/amd64), saving the subdomain file with different line endings, reinstalling go, running the main.go directly and more.
Now I got myself a Debian VPS for future research and tried again on there. Surprisingly, it also didn't work there. Tried a small list again, no output in verbose mode, didn't create an output file or anything.
In this Windows test you were using go 1.10. So I downgraded go on the VPS, no difference.
VPS OS:
root@security-research:~# cat /etc/debian_version
9.5
Is there any information I could provide so the problem can be debugged? Did I miss something?
Other tools like gobuster seem to work just fine.
Thanks in advance!
Hi.
Is there a way to check A records?
or Only CNAME check?
Thanks.
Hi Sir,
Hope you are good!
Actually i download this tool via go get github,com/haccer/subjack. and i am using Ubuntu 16
then i found the location of the tools its in /src/github.com/haccer/subjack (master)>
after that i simply run go build and it will successfully done.
But when i use this command --> subjack -w sub.txt -t 100 -timeout 30 -o results.txt -ssl
it shows nothing please help me out from this!
Regards
Shivam
Hi Dude,
Is there a way we can add the original subdomain to match the domain that can be hijacked.
i've got all the s3 buckets but it's hard to match them up to subdomains.
Could the output be a CSV where one col is subdomain the next type and the next the source i.e bucket
Please add feature to read input from stdin also .
Although I was able to read from stdin using "-w /dev/stdin" but it is not efficient.
Since when we are enumerating domains with tools like amass or subfinder then we require their output to pass parallely to subjack for faster results.
go build
# github.com/caffix/amass/amass
/root/GO/src/github.com/caffix/amass/amass/wildcards.go:138:2: undefined: "math/rand".Shuffle
due to an issue with amass subjack will not build.
Is it possible to add a flag so we can select our own list of resolvers? Scanning big amount of subs makes subjack fail and not get them all
When trying to install the Go package.
$ sudo go get github.com/haccer/subjack
go build github.com/zonedb/zonedb: /usr/lib/go-1.13/pkg/tool/linux_amd64/compile: signal: killed
i try to build a "main.go" file with go i give the error.
root@kali:/Desktop/subjack# go build main.go/Desktop/subjack#
main.go:8:2: cannot find package "github.com/haccer/subjack/subjack" in any of:
/usr/lib/go-1.14/src/github.com/haccer/subjack/subjack (from $GOROOT)
/root/go/src/github.com/haccer/subjack/subjack (from $GOPATH)
root@kali:
what is this error can any one help.
Hi,
As far as I see when the option -a
is not setted, a request to the host is performed when there is a match between the cname fingerprint and the host alias. However, sometimes (I think) those requests are useless.
Example: I am currently working on a bug bounty program where dozen of hosts are alias to
blabla-0708-427040690.us-east-1.elb.amazonaws.com
, this trigger the s3 bucket fingerprint performing hundreds of useless requests.
A minor change could highly improved the tool. If the cname fingerprint would be a regexp like this:
\.s3[a-zA-Z0-9\-\._]*\.amazonaws\.com$
Same for heroku, could be: \.herukapp\.com$
and all others.
I think this could also avoid some false positive.
Best regards,
Given a hostname to check, it should be possible to check for CNAMEs or A records and compare them to known destinations for the third party.
This should be strictly faster than HTTP (since HTTP requests require DNS resolution anyway), and potentially more reliable over time (as the text signatures are more likely to change than long-term CNAME destinations).
Hi,
I am trying to integrate your tool into my existing project. Could you provide assistance in deploying this app on Heroku?
Im not getting any output not on my terminal and its not even creating the output file.
Here is the command I used:
subjack -w merged.txt -t 20 -timeout 30 -o results_subjack.txt -ssl -c ~/go/src/github.com/haccer/subjack/fingerprints.json
Here is a snippet of my merged.txt file:
v.tiktok.com
vm.tiktok.com
vt.tiktok.com
www.tiktok.com
I installed suback via go get and then moved it into /usr/local/bin
I also tried other subdomains and subdomain lists that I know contain the toplevel domain of github and therefore should return something.
Hello
I am using the newest version of subjack with go1.10.4 on Ubuntu, but have the following error:
/src/github.com/haccer/subjack/fingerprints.json: no such file or directory
Subjack tries to find fingerprints.json by absolute path, not in directory marked as GOPATH.
Could you please help me fixing this?
I am sorry for this issue if i'm not right.
Thank you
How to exit the subjack after completing the subdomains ?As of now I need to exit the subjack output on the terminal with ctrl+z which is not good.
Is there any way to execute the subjack and after completing the execution .Terminal is ready for another command
When trying to find a Cloudfront takeover, it is now required that you resolve the domain, find any CNAMEs that it might be pointing to, then resolve those CNAMEs. If those point to Cloudfront and you've got the Cloudfront error, then you've got a takeover. Otherwise, it is invalid. See Can-I-Takeover-XYZ Cloudfront.
Hey,
I've noticed i'm getting a lot of FPs for MailerLite. It looks like line 265 has a commonly found string:
"Not found": "MAILERLITE",
thanks
github.com/klauspost and the rest have updated their paths. 404 on them. Can not install.
go install
../../valyala/fasthttp/compress.go:10:2: cannot find package "github.com/klauspost/compress/flate" in any of:
/usr/local/go/src/github.com/klauspost/compress/flate (from $GOROOT)
/go/src/github.com/klauspost/compress/flate (from $GOPATH)
../../valyala/fasthttp/compress.go:11:2: cannot find package "github.com/klauspost/compress/gzip" in any of:
/usr/local/go/src/github.com/klauspost/compress/gzip (from $GOROOT)
/go/src/github.com/klauspost/compress/gzip (from $GOPATH)
../../valyala/fasthttp/compress.go:12:2: cannot find package "github.com/klauspost/compress/zlib" in any of:
/usr/local/go/src/github.com/klauspost/compress/zlib (from $GOROOT)
/go/src/github.com/klauspost/compress/zlib (from $GOPATH)
../../valyala/fasthttp/args.go:10:2: cannot find package "github.com/valyala/bytebufferpool" in any of:
/usr/local/go/src/github.com/valyala/bytebufferpool (from $GOROOT)
/go/src/github.com/valyala/bytebufferpool (from $GOPATH)
Example:
a.site.com > A > NXDOMAIN
a.site.com > CNAME > site.3rdparty.com
Flag this for the manual verification.
Are there known issues running this on VMWare? I'm running on Ubuntu 18.10, VMware Workstation and get [Not Vulnerable] false positives for every subdomain checked. The same build on non-VMWare seems to work fine.
So far all the Azure takeovers i've found that resolve to *.trafficmanager.net seem to be FP
thanks
Hello, i added some services to the fingerprints file. i tried to copy-paste so i didn't ruin anything.
In the services i added i put nxdomain:true so it would only alert me when the cname was nxdomain. The thing is i am getting a lot of alerts of cnames with "NOERROR" instead of "NXDOMAIN" and of course are false positives.
the fingerprints.json is fine so i don't know how to fix this
On installation attempt I get
go get github.com/haccer/subjack
# github.com/miekg/dns
../../go/src/github.com/miekg/dns/dnssec_keyscan.go:149:18: undefined: ed25519.SeedSize
../../go/src/github.com/miekg/dns/dnssec_keyscan.go:152:8: undefined: ed25519.NewKeyFromSeed
../../go/src/github.com/miekg/dns/dnssec_privkey.go:86:24: p.Seed undefined (type ed25519.PrivateKey has no field or method Seed)
on OSX Mojave 10.14.5
go version go1.12.5 darwin/amd64
(master) % go env ~/www/tools/subjack
GOARCH="amd64"
GOBIN=""
GOCACHE="/Users/User/Library/Caches/go-build"
GOEXE=""
GOFLAGS=""
GOHOSTARCH="amd64"
GOHOSTOS="darwin"
GOOS="darwin"
GOPATH="/Users/User/go"
GOPROXY=""
GORACE=""
GOROOT="/usr/local/Cellar/go/1.12.5/libexec"
GOTMPDIR=""
GOTOOLDIR="/usr/local/Cellar/go/1.12.5/libexec/pkg/tool/darwin_amd64"
GCCGO="gccgo"
CC="clang"
CXX="clang++"
CGO_ENABLED="1"
GOMOD=""
CGO_CFLAGS="-g -O2"
CGO_CPPFLAGS=""
CGO_CXXFLAGS="-g -O2"
CGO_FFLAGS="-g -O2"
CGO_LDFLAGS="-g -O2"
PKG_CONFIG="pkg-config"
GOGCCFLAGS="-fPIC -m64 -pthread -fno-caret-diagnostics -Qunused-arguments -fmessage-length=0 -fdebug-prefix-map=/var/folders/kt/x9cp3xx52wg9xt7y61187fbh0000gn/T/go-build305441602=/tmp/go-build -gno-record-gcc-switches -fno-common"
Any things I need to try?
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.