subquest
Advanced tools
Readme
Fast, Elegant subdomain scanner using nodejs
If you want to use it as cli tool, you must install it globally first:
sudo npm install -g subquest
Usage: subquest [options] <domain to scan>
Examples:
subquest google.com
subquest facebook.com -s 8.8.8.8 -r 20 -d top_50
subquest twitter.com -s 8.8.8.8 -d all
Options:
-h, --help output usage information
-V, --version output the version number
-b, --bingSearch use Bing search to list all possible subdomains
-s, --server [ip] specify your custom DNS resolver
-r, --rateLimit [limit] set the Rate Limit [Default value is 10]
-d, --dictionary [type] set the dictionary for bruteforcing [top_100]
If you want to use it as a node module you can install and add it to your project dependencies:
npm install subquest
Than you can require it in your script and use it:
After the version 1.5.0 the module doesn't use event emitters, just callbacks,
const subquest = require('subquest')
subquest.getSubDomains({
host: 'google.com'
}, (err, results) => {
if(err) {
console.log('Error:', err);
return;
}
console.log('Subdomains:', results);
})
Before the version 1.5.0 the module makes use of event emitters to determine when it's done.
var subquest = require('subquest');
subquest
.getSubDomains({
host: 'google.com', // required
rateLimit:'4', // four requests at time
dnsServer:'4.2.2.2', // custom DNS server
dictionary: 'top_200' // dictionary file to use
})
.on('end', function(res){
console.log(res); // array of subdomains.
})
This scans google.com for the list of all subdomains using the top_200 dictionary.
Add your list of subdomain names to the ./dictionary/all.txt file and send a pull request.
FAQs
Fast, Elegant subdomain scanner using nodejs
The npm package subquest receives a total of 89 weekly downloads. As such, subquest popularity was classified as not popular.
We found that subquest demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Researchers have demonstrated that teams of LLM agents can exploit zero-day vulnerabilities with a 53% success rate, and the costs of using AI to do so are rapidly becoming more affordable than hiring a human penetration tester.
Security News
In an unprecedented surge, May 2024 saw the publication of over 5,000 CVEs, marking a historic milestone in cybersecurity with an average of 164 CVEs per day, nearly double the 2023 daily average.
Security News
The White House is addressing fragmented cybersecurity regulations as CISOs report spending up to 50% of their time on compliance, aiming to harmonize requirements and improve cybersecurity outcomes.