Bruteforce Subdomains with DNSMap
This one's really quick - if you've ever needed to know some subdomains of a site, consider "dnsmap". It will bruteforce a bunch of subdomains for any domain you give it - and you can customise your own domain. It's pretty simple. Here's the linux instructions:
DOWNLOAD ITtar xf dnsmap-latest.tar && cd dnsmap
3. Make sure you have a C compiler installed (i.e. GNU C++ Compiler) and compile it:
gcc dnsmap.c -o dnsmap
4. Make it executable:
chmod +x dnsmap
5. Run it:
./dnsmap domain.com
6. View results:
dnsmap - DNS Network Mapper by pagvacSearching subhosts on domain google.comap.google.comIP Address #1:209.85.173.103IP Address #2:209.85.173.104IP Address #3:209.85.173.147IP Address #4:209.85.173.99blog.google.comIP Address #1:72.14.207.191catalog.google.comIP Address #1:74.125.19.100IP Address #2:74.125.19.101IP Address #3:74.125.19.102IP Address #4:74.125.19.113catalogue.google.comIP Address #1:74.125.19.113IP Address #2:74.125.19.100IP Address #3:74.125.19.101IP Address #4:74.125.19.102directory.google.comIP Address #1:209.85.173.103IP Address #2:209.85.173.104IP Address #3:209.85.173.147IP Address #4:209.85.173.99download.google.comIP Address #1:209.85.173.99IP Address #2:209.85.173.103IP Address #3:209.85.173.104IP Address #4:209.85.173.147downloads.google.comIP Address #1:209.85.173.147IP Address #2:209.85.173.99IP Address #3:209.85.173.103IP Address #4:209.85.173.104email.google.comIP Address #1:74.125.19.100IP Address #2:74.125.19.101IP Address #3:74.125.19.102IP Address #4:74.125.19.113finance.google.comIP Address #1:209.85.173.104IP Address #2:209.85.173.147IP Address #3:209.85.173.99IP Address #4:209.85.173.103groups.google.comIP Address #1:209.85.171.113IP Address #2:209.85.171.100IP Address #3:209.85.171.101IP Address #4:209.85.171.102images.google.comIP Address #1:209.85.173.147IP Address #2:209.85.173.99IP Address #3:209.85.173.103IP Address #4:209.85.173.104labs.google.comIP Address #1:74.125.19.113IP Address #2:74.125.19.100IP Address #3:74.125.19.101IP Address #4:74.125.19.102mail.google.comIP Address #1:209.85.201.18IP Address #2:209.85.201.19IP Address #3:209.85.201.83mobile.google.comIP Address #1:209.85.173.193news.google.comIP Address #1:209.85.171.99IP Address #2:209.85.171.103IP Address #3:209.85.171.104IP Address #4:209.85.171.147photo.google.comIP Address #1:74.125.47.91IP Address #2:74.125.47.93IP Address #3:74.125.47.136IP Address #4:74.125.47.190photos.google.comIP Address #1:74.125.47.190IP Address #2:74.125.47.91IP Address #3:74.125.47.93IP Address #4:74.125.47.136proxy.google.comIP Address #1:64.233.169.4IP Address #2:64.233.171.4IP Address #3:64.233.179.4IP Address #4:64.233.183.4IP Address #5:64.233.184.4IP Address #6:64.233.187.4IP Address #7:66.102.0.4IP Address #8:66.102.9.4IP Address #9:66.102.14.225IP Address #10:66.102.14.241IP Address #11:216.239.42.4IP Address #12:216.239.53.4IP Address #13:216.239.55.5IP Address #14:216.239.57.4IP Address #15:216.239.59.4IP Address #16:64.233.161.4IP Address #17:64.233.165.4IP Address #18:64.233.167.4research.google.comIP Address #1:74.125.19.102IP Address #2:74.125.19.113IP Address #3:74.125.19.100IP Address #4:74.125.19.101sandbox.google.comIP Address #1:209.85.171.81search.google.comIP Address #1:209.85.173.99IP Address #2:209.85.173.103IP Address #3:209.85.173.104IP Address #4:209.85.173.147services.google.comIP Address #1:209.85.139.110shopping.google.comIP Address #1:209.85.171.103IP Address #2:209.85.171.104IP Address #3:209.85.171.147IP Address #4:209.85.171.99smtp.google.comIP Address #1:209.85.237.25sms.google.comIP Address #1:209.85.173.147IP Address #2:209.85.173.99IP Address #3:209.85.173.103IP Address #4:209.85.173.104support.google.comIP Address #1:74.125.19.101IP Address #2:74.125.19.102IP Address #3:74.125.19.113IP Address #4:74.125.19.100uploads.google.comIP Address #1:72.14.243.49vpn.google.comIP Address #1:64.9.224.69IP Address #2:64.9.224.70IP Address #3:64.9.224.68www.google.comIP Address #1:209.85.173.104IP Address #2:209.85.173.147IP Address #3:209.85.173.99IP Address #4:209.85.173.103www2.google.comIP Address #1:64.233.179.104www3.google.comIP Address #1:64.233.179.10431 subhost(s) found
Enjoy, and use it legally in your penetration tests.