josue87 / gotator Goto Github PK

@Josue87 Can you please add a flag to control the number of threads meanwhile I also found that gotator is missing one mutation when we don't want to use depth flag so this would be in default mutation list but it is missing
words:

junk

domain:

new.example.com

command

gotator -sub domain -perm words -md | sort -u

Result

example.com
junk.example.com
junk-new.example.com
junk.new.example.com
junknew.example.com
new.example.com
new-junk.example.com
newjunk.example.com
new-new.example.com
newnew.example.com

As you see it is missing new.junk.example.com when it is having new-junk.example.com, results are also containing duplicates

hey thank you for the tool when i downloaded from binary of go there is no -adv option present

flag provided but not defined: -adv
Usage of gotator:
-depth uint
Specify the depth (Between 1 and 3) (default 1)
-md
Extract domains and subdomains from subdomains found in 'sub' list
-mindup
Set this flag to minimize duplicates. (For heavy workloads, it is recommended to activate this flag)
-numbers uint
Permute the numbers found in the list of permutations
-perm string
List of permutations (1 per line)
-prefixes
Adding gotator prefixes to permutations
-silent
Gotator banner is not displayed
-sub string
List of domains to be swapped (1 per line) [Required]
-t uint
Max Go routines (default 10)
-version
Show Gotator version

If possible please remove the Logo to pipe the command. Like -s/--silent for silent output.

like gotator -sub domains.txt -depth 1 -numbers 1 -o 2.txt?

Hello,

I recently found an issue on Gotator, which is related to the numbering. Imagine, here is the list of my initial subdomains:

api.target.com
js.target.com
target.com
ws.target.com
www.target.com

I then ran the following command:

gotator -silent -sub subs.txt  -perm vhosts.txt -depth 1 -numbers 3 -mindup -adv -md >> permutation.txt

but the tool is unable to create the js2.target.com, which is pretty odd as I am using the numbers properly. Also, please note that this example subdomain was vulnerable to a subdomain takeover, which is not nice to miss.

Thanks in advance!

Kind regards,
HolyBugx

gotator -sub subdomains.txt -perm /usr/share/wordlists/dns/permutations_list.txt -depth 1 -numbers 10 -mindup -adv -md > permutations.txt 2 ⨯
When I run the above command it shows this -> flag provided but not defined: -mindup

Hi @Josue87

First of All , Thanks for this Amazing tool !!

Gotator is an Awesome & Nice tool to work with : )

And it will be great and more helpful if implement support for read input from stdin

cat hosts.txt | gotator -perm wordlists.txt

Thanks & Regards,
@zy9ard3

Hello,
It looks like that gotator has a problem with domains that has three levels like:
domain.org.uk
when I use a command like this one:
gotator -sub test_list.txt -depth 1 -numbers 10 -mindup -adv -md| uniq > test-gotator.txt
it generate permutations like:

0.org.uk
12.org.uk
2.org.uk
4.org.uk
ace.org.uk

which as you know are out of scope since the tested domain is domain.org.uk.

Regards

Sometimes output of permutation is over millions lines because of our settings. I thinks it is really helpful to estimate amount of output lines before we run, so we can optimize better settings.

if you want a badge...

https://goreportcard.com/report/github.com/Josue87/gotator

@Josue87 It would be good if it have a switch to control the number mutations like if we want to mutate only 5 numbers like:
Gotator -sub domains.txt -perm permutations.txt -depth 3 -numbers +5 -t 200 > output.txt
One more things that gotator is not swapping the word from the subdomain list like:

Wordlist
one
domainlist

test.example.com

gotator mutate like

test.example.com
one.test.example.com
one-test.example.com
onetest.example.com

Here I like to have mutations as below (give attention on test word)

one.test.example.com
test.one.example.com
onetest.example.com
one-test.example.com
testone.example.com
test-one.example.com

@Josue87 thank you for the tool, can you please introduce a flag to generate only mutations base on a single wordlist without -sub flag