This article is for safe learning use only! Do not use illegally.
1. Overview of Knockpy
Knockpy is a python3-based subdomain mining security tool that can quickly enumerate subdomains on the target domain through dictionary attacks. Scans for DNS zone transfers and attempts to bypass wildcard DNS records. In the latest version, knockpy supports querying VirusTotal subdomains, you can set the API_KEY in the config.json file.
Two, Knockpy installation
- Installation environment
needspython3
,pip3
,git
- Download and install
git clone https://github.com/guelfoweb/knock.git
cd knock
pip3 install -r requirements.txt
python3 setup.py install
3. Use of Knockpy
Mining Baidu's subdomains:
python3 knockpy.py baidu.com
View instructions for use:
python3 knockpy.py -h