Online platform:
Third-party platform query
ip138 https://site.ip138.com/Webmaster
Tools http://tool.chinaz.com/subdomain/?domain=hackertarget
https://hackertarget.com/find-dns-host-records/
t1h2ua https: / /www.t1h2ua.cn/tools/
dnsdumpster https://dnsdumpster.com/
chinacycc https://d.chinacycc.com/index.php?m=Login&a=index
zcjun http://z.zcjun.com/
phpinfo https://phpinfo.me/domain/
ximcx http://sbd.ximcx.cn/
Weight comprehensive query
Love Station http://rank.chinaz.com/all/
Webmaster Tools https://www.aizhan.com/seo/
Basic Database of National Government Website
http://114.55.181.28/databaseInfo/index
IP anti-search domain name binding website
chinaz http://s.tool.chinaz.com/same?s
azahan https://dns.aizhan.com/
webscan.cc https://webscan.cc/
Asset search engine:
Google grammar query site: baidu.com
FOFA grammar query domain = "baidu.com"
Tool enumeration:
OneForAll project address: https://github.com/shmilylty/OneForAll command: python3 oneforall.py --target = target.com run
Layer
subDomainsBrute project address: https://github.com/lijiejie/subDomainsBrute command: python subDomainsbrute. py xtarget.com
Sublist3r Project address: https://github.com/aboul3la/Sublist3r Command: python sublist3r.py -d target.com -b -t 50 -p 80,443,21,22
K8
wydomain
dnsmaper
dnsbrute
Findomain
fierce, etc.
Enumeration of certificate transparency public logs:
Online third-party platform query
crt.sh https://crt.sh/?q=baidu.com
censys https://www.censys.io/certificates?q=baidu.com
myssl https://myssl.com/
Tool enumeration query
Findomain project address: https://github.com/Edu4rdSHL/findomain Subdomain collection: findomain -t target.com Use all APIs to search for subdomains and export data to CSV files: findomain -t target.com -a -o csv
DNS history analysis:
https://www.dnsdb.io/zh-cn/
https://viewdns.info/