Bug bounty chat

24 Sep 2023 09:41

you have control on 'for how much time, subdomain enumeration should go on before handing out the clean output of only subdomain names'

Bug bounty chat

24 Sep 2023 09:23

amass enum -d google.com | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}'

Bug bounty chat

24 Sep 2023 09:18

-o subdomain.txt delete

Bug bounty chat

24 Sep 2023 09:07

amass enum -d google.com -o subdomains.txt
grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt > subdomains_filtered.txt

Bug bounty chat

24 Sep 2023 08:40

just make an empty file then type those commands

Bug bounty chat

24 Sep 2023 08:37

here's rewritten command:


amass enum -d google.com -o subdomains.txt | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt

Bug bounty chat

24 Sep 2023 08:36

amass enum -d google.com | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt
grep: subdomains.txt: No such file or directory

Bug bounty chat

24 Sep 2023 08:34

try this:

amass enum -d google.com | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt

Bug bounty chat

24 Sep 2023 08:20

Help me, I want to find Subdo with amass How do I enter the correct command so that only subdomains are displayed

Bug bounty chat

23 Sep 2023 05:42

I guess you are new to the field

Bug bounty chat

22 Sep 2023 21:48

Chance of duplicate is lower than 10% on manuel test. Nuclei and any automation tool is higher than 90%

Bug bounty chat

22 Sep 2023 21:47

Teh that's fuzzing which is essential

Bug bounty chat

22 Sep 2023 21:21

You arent testing thousands of hosts manually tho, nuclei is one of the best tools out there to scale big numbers

Bug bounty chat

22 Sep 2023 21:19

Nuclei has basically no false positives

Bug bounty chat

22 Sep 2023 21:11

Manual bug hunt > automated

Bug bounty chat

24 Sep 2023 09:39

another custom command, which waits for some seconds for subdomain enumeration in background and then lists out only the subdomains without any additional information

Bug bounty chat

24 Sep 2023 09:22

amass enum -d google.com | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' > subdomains.txt

Bug bounty chat

24 Sep 2023 09:08

Not Amas can't do all of that

Bug bounty chat

24 Sep 2023 08:41

ehsahil/recon-my-way-82b7e5f62e21" rel="nofollow">https://medium.com/@ehsahil/recon-my-way-82b7e5f62e21

Bug bounty chat

24 Sep 2023 08:38

amass enum -d google.com -o subdomains.txt | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt

Bug bounty chat

24 Sep 2023 08:36

Do I have to create a subdomain.txt file first?

Bug bounty chat

24 Sep 2023 08:36

amass enum -d google.com | grep -Eo '[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}' subdomains.txt

Bug bounty chat

24 Sep 2023 08:33

Please tell me a good subdomain finder tool other than subfinder

Bug bounty chat

23 Sep 2023 10:29

Can I become your friend

Bug bounty chat

22 Sep 2023 22:14

If all you do is running default nuclei, the tool isnt the problem

Bug bounty chat

22 Sep 2023 21:47

You find dups regardless of the tool or manual test you do if someone came first 🤷‍♂

Bug bounty chat

22 Sep 2023 21:46

What about Duplicates?

Bug bounty chat

22 Sep 2023 21:20

I agree. There is nothing better than manual when it comes this. The only way I’d ever use a manual process is when trying different payloads for a specific function like xss or path traversal with intruder

Bug bounty chat

22 Sep 2023 21:13

A 6yo old kid will find less false positive than automated tool 🔧

Bug bounty chat

22 Sep 2023 20:45

to HELP ME not HUNT FOR ME