.png)
3 years ago
264 BOOK THIS SPACE FOR AD
ARTICLE AD1st Step is to find all subdomains of a website using some tools that you know them better than me(like: assetfinder,subfinder,…)
but its important to be sure that they are in scope, the best way is to do this recon on websites that they are: *.example.com .
assetfinder example.com >> all.txtor you can grep the domain for having appropriate output
assetfinder example.com | grep example.com >> all.txtAfter finding all subdomains we are going to find some URLs from past that wayback machines captured.
there is some tools makes that easier, like waybackurls.
cat all.txt | waybackurls > urlsnow we have lots of waybacked assets in urls file
but the problem here is that some of this assets are dead! it means they are not existing now (maybe dropd , modified or …)
To fix this potential problem its better to use a tool like httpx or httprobe but pending our goal we do or don’t . usually i don’t use them cause it takes long time and i always prefer to use my own tool or test dead assets too.
so now we should separate urls containing parameter to do this we can grep just ‘=’ or ‘?’ .
Bengali (Bangladesh) · 
English (United States) ·