Listen to this Post
Bug bounty hunters, hereās a cool recon tool! Shosubgo helps you fetch subdomains quickly using Shodan APIāsaving time & uncovering hidden assets. ā”
š Check it out: https://lnkd.in/gAtkgdGg
Practice Verified Codes and Commands:
1. Install Shosubgo:
git clone https://github.com/your-repo/shosubgo.git cd shosubgo pip install -r requirements.txt
2. Set Up Shodan API Key:
export SHODAN_API_KEY="your_shodan_api_key_here"
3. Run Shosubgo:
python shosubgo.py -d example.com
4. Filter Subdomains:
cat subdomains.txt | grep "example"
5. Check Subdomain Availability:
for sub in $(cat subdomains.txt); do ping -c 1 $sub; done
6. Nmap Scan on Subdomains:
for sub in $(cat subdomains.txt); do nmap -sV $sub; done
7. Save Results:
python shosubgo.py -d example.com -o results.txt
What Undercode Say:
In the realm of cybersecurity, tools like Shosubgo are invaluable for reconnaissance, especially for bug bounty hunters and penetration testers. The ability to quickly gather subdomains using the Shodan API can significantly streamline the process of identifying potential attack vectors. By automating the discovery of subdomains, security professionals can focus more on analyzing vulnerabilities rather than spending excessive time on manual enumeration.
For those diving into bug bounty hunting, mastering tools like Shosubgo is essential. It not only saves time but also uncovers hidden assets that might be overlooked during manual searches. The integration of Shodan API enhances the tool’s capability, providing access to a vast database of internet-connected devices and services.
To further enhance your skills, consider exploring additional tools and techniques. For instance, combining Shosubgo with tools like Amass, Sublist3r, or Assetfinder can provide a more comprehensive view of the target’s attack surface. Additionally, leveraging Nmap for port scanning and service enumeration can help identify open ports and services running on discovered subdomains.
For those new to Shodan, it’s worth noting that the platform offers a wealth of information beyond subdomain enumeration. Shodan can be used to search for specific devices, services, or vulnerabilities across the internet. By mastering Shodan’s search syntax, you can uncover exposed databases, misconfigured servers, and other potential security risks.
In conclusion, tools like Shosubgo, when used effectively, can significantly enhance your reconnaissance efforts. By automating the discovery of subdomains and integrating with powerful APIs like Shodan, you can uncover hidden assets and potential vulnerabilities more efficiently. As always, remember to use these tools responsibly and within the bounds of legal and ethical guidelines.
Additional Resources:
- Shodan API Documentation
- Amass GitHub Repository
- Sublist3r GitHub Repository
- Assetfinder GitHub Repository
References:
initially reported by: https://www.linkedin.com/posts/deepak-saini-cyber_grab-subdomains-using-shodan-api-bug-activity-7302534456983068674-yEi1 – Hackers Feeds
Extra Hub:
Undercode AI
