Profile picture
Jane Scott @JaneScott_
, 4 tweets, 2 min read Read on Twitter
Oneliner Subdomain Enumeration! 🌏

Run this nifty little command to grab a neat list of subdomains under a given TLD:

curl 'https:​//crt​.sh/?q=%.example​.com&output=json' | jq '.name_value' | sed 's/\"//g' | sed 's/\*\.//g' | sort -u

🙏 to @NahamSec

#oneliner #enumeration
❗️Note: requires jq! (apt install jq, brew install jq, etc)
‼️Also, heads up that I had to embed some zero width spaces into the URLs in that command, to stop Twitter munting them right up. You'll need to retype urls yourself or an invisible hole will open in the universe 😇
For those who asked, the step by step walkthrough is here 👇
REFINED VERSION - a bit shorter and more efficient as it uses the -r flag in jq to cut out the double piping to sed:

curl 'https:​//crt​.sh/?q=%.example​.com&output=json' | jq -r '.name_value' | sed 's/\*\.//g' | sort -u

(🙏🏽 to @fharding0 for the -r tip)
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Jane Scott
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#oneliner #enumeration

More from @JaneScott_ see all

Profile picture
@ResearchDump @kfalconspb @NahamSec Ok, as requested 😊 here's a quick breakdown for the subdomain enumeration #oneliner!

Hard to fit all the fine details in a few tweets, but the quick and dirty version is as follows:

thread below👇
@ResearchDump @kfalconspb @NahamSec 1) First, we use curl to grab text stream output from crt.sh, querying which certificates are registered for <anything>.example.com, and asking crt.sh to give you back the results in json format. Looks messy, eh!
@ResearchDump @kfalconspb @NahamSec 2) Next we pipe that json format stream in to jq (json data editor), to trim the results down to just the values of the "name_value" pairs, which contain all of the discovered subdomain names. Bit cleaner, but we want more...
Read 6 tweets

Related threads

Profile picture
JANUARY 6, 2019 #Q JUSTICE IS COMING
[RBG]
Why was she 'selected'?
Who appointed her?
Remember [her] history.
Ref: 230-page book called Sex Bias in the U.S. Code, published in 1977 by the U.S. Commission on Civil Rights.
Highlights:
humanevents.com/2005/08/23/sen…
Read 184 tweets
Profile picture
#Q new thread
VP .. SA..MISSILES..NOV 2017.. TWITTER.. LOC.
Why Did VP get envelope to?
#911
#money
#security
#SA.
#PODESTAGROUP
#LAWYERS
#QAnon
What does VP know relates to 911?
@arresthrc
@fedupwarriorq17
@Qstorm1969
VP & Tim Kane 911.

freebeacon.com/politics/tim-k…
@fedupwarriorq17 @arresthrc
@Qstorm1969
Read 58 tweets
Profile picture
1. #QAnon drops: The Bruce Ohr involvement unlocks the UK / Foreign Intelligence [FiVE EYes (US, UK, CA, Australia, New Zealand)] role in the attempted theft of our election. Did the REQuest not come from Hussein? #Q
2. #QAnon It was necessary that Bruce Ohr's testimony be closed door. The Cabal in D.C., UK, and AUStralia are in a panic, because they were caught "Red-Handed" with archived communications revealed to Ohr today to 'encourage truthful testimony'.
"[19] phone calls today
#Q"
3. #QAnon tells of comms going from Bruce Ohr to UK to AUStralia to UK to Bruce Ohr to Australia's Alexander Downer as one example of the Five Eyes involved in the attempt to steal our election. Get ready for next "FAKE NEWS BLAST NARRATIVE SHIFT" NECessary says #Q.
Read 57 tweets
Profile picture
1. Shortly after #QAnon'd mentioned "Xbox chat logs" being used by #DeepState, Xbox Live went down. Purging chat logs? Don't realize we already "have it all" anyways? #Q
venturebeat.com/2018/08/15/xbo…
2. If #QAnon were a "theory" like #MockingbirdMedia tries to tell us, why would Xbox freak out? #Q
3. #QAnon: If Snowden were trying to seek asylum via travel to UIO, Quito, Equador from Hong Kong International Airport, why would he route through Russia? Was #Russia not the original destination all along, so #Clowns could hurt US-Russia relationship? #Q
Read 42 tweets
Profile picture
🇺🇸NEW #QAnon Thread🇺🇸

🇺🇸5/15/18🇺🇸

They knew this day would come.
EVIL everywhere.
CORRUPTION everywhere.
We Fight!
We, the PEOPLE.

#MAGA #WWG1WGA #WeThePeople #GreatAwakening #Trump #POTUS #DrainTheSwamp #TuesdayThoughts #PATRIOTSFIGHT @realDonaldTrump @potus
New #QAnon 1372.

Time of publish?
[4am]
Timing of drop?
Coincidence?
Fight to reinstall roadblock?
bloomberg.com/amp/news/artic…
Who is Richard Donoghue?
Background?
PAIN.

#MAGA #WWG1WGA #WeThePeople #GreatAwakening #Trump #POTUS #PATRIOTSFIGHT #TuesdayThoughts @realDonaldTrump
Referring to the Bloomberg article in #Q post 1372, #QAnon asks "Time of publish? [4am] Timing of drop? Coincidence?" 4am is the time #FakeNews #MSM receives talking points, as we've learned from previous Q drops.

#WWG1WGA #MAGA #Trump @realDonaldTrump #POTUS #PATRIOTSFIGHT
Read 22 tweets
Profile picture
#QAlert 5/15/18 This will be my THREAD for all of #Q’s posts for Tuesday May 15, 2018. #1776, Enjoy the show, find the 2 [187]’d #NYPD detectives mid-year and more!

Let’s Go!

@POTUS #Qanon #QArmy #WWG1WGA #EnjoyTheShow #ImwithQ #TheRainMakers
#QAlert 5/15/18 Post 1369 #Q labeled this post ##1776 and quoted a paragraph about destructive gov’t. Then links to a damning Erik Prince audio interview. MUST LISTEN!
▶️m.soundcloud.com/breitbart/brei…
We Fight!
Q
@POTUS #Qanon #QArmy #WWG1WGA #EnjoyTheShow #ImwithQ #TheRainMakers
#QAlert 5/15/18 Post 1370

Why was Preet Bharara fired?
Why was the NY AG just removed?
Why did Rudy recently join POTUS’ legal team after being ‘quiet’ for so long?

[More below]👇🏻

@POTUS #Qanon #QArmy #WWG1WGA #EnjoyTheShow #ImwithQ #TheRainMakers
Read 24 tweets

Trending hashtags

#MigrantCrisis #OrganHarvesting #AbolishICE #MuellerTime #DeepState #news #MuslimBrotherhood #PopularVote #Clintoncide #KY #SundayFunday #ClintonFoundation #BuildTheWall #Qanon8chan #FAKENEWS #IndependenceDay2018 #SchumerPelosiShutdown #WeDontSayHisName #PatriotsFight #TrustThePlan #MAGA #NoName #DOJ #WhoIsQ #FISA

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!