Just Finish a Multiple FFUF and playing with RUSHrush -i /opt/recon/xxx/hostsAlive -j 10 'ffuf -o $(echo {} | unfurl domains) -w /opt/SecLists/Discovery/Web-Content/raft-large-files.txt -u "{}/FUZZ" -sf -ignore-body -mc 200 -t 300' #bugbountytips
subfinder -nW -silent -t 25 -d $DOMAIN | shuffledns -silent -d $DOMAIN -r $RESOLVER | wildcheck -t 100 | awk '{print $3}' | dnsprobe -t 350 -f domain Some crazy oneliners possible for subdomain discovery
Last updated 3 years ago