Profile picture
Jane Scott @JaneScott_
, 6 tweets, 7 min read Read on Twitter
@ResearchDump @kfalconspb @NahamSec Ok, as requested 😊 here's a quick breakdown for the subdomain enumeration #oneliner!

Hard to fit all the fine details in a few tweets, but the quick and dirty version is as follows:

thread below👇
@ResearchDump @kfalconspb @NahamSec 1) First, we use curl to grab text stream output from crt.sh, querying which certificates are registered for <anything>.example.com, and asking crt.sh to give you back the results in json format. Looks messy, eh!
@ResearchDump @kfalconspb @NahamSec 2) Next we pipe that json format stream in to jq (json data editor), to trim the results down to just the values of the "name_value" pairs, which contain all of the discovered subdomain names. Bit cleaner, but we want more...
@ResearchDump @kfalconspb @NahamSec 3) Pipe those results in turn to sed (text stream editor utility) to remove the containing quotation marks (which as @fharding0 said, could also have been achieved with the -r switch in jq - that would make it a bit shorter & more efficient!)
@ResearchDump @kfalconspb @NahamSec @fharding0 4) Next we pipe the results back in to sed again, this time to remove the leading wildcard subdomain chars (*.)
...Now we're getting somewhere.
@ResearchDump @kfalconspb @NahamSec @fharding0 5) Finally, we pipe whatever's left in to the sort utility, to put everything neatly in alphabetical order, and use the -u switch to remove duplicates. Voilà! 😋😋😋
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Jane Scott
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#oneliner

More from @JaneScott_ see all

Profile picture
Oneliner Subdomain Enumeration! 🌏

Run this nifty little command to grab a neat list of subdomains under a given TLD:

curl 'https:​//crt​.sh/?q=%.example​.com&output=json' | jq '.name_value' | sed 's/\"//g' | sed 's/\*\.//g' | sort -u

🙏 to @NahamSec

#oneliner #enumeration
❗️Note: requires jq! (apt install jq, brew install jq, etc)
‼️Also, heads up that I had to embed some zero width spaces into the URLs in that command, to stop Twitter munting them right up. You'll need to retype urls yourself or an invisible hole will open in the universe 😇
For those who asked, the step by step walkthrough is here 👇
Read 4 tweets

Related threads

Profile picture
Hi, hello, I’m reporting from the media room at JPL for the #InSight #MarsLanding. From now on until it’s over I’m going to keep my Twitter feed clean of anything except landing-related news. I’ll likely do a Q and A on Twitter today after the post-landing press briefing.
Here is my landing timeline:
planetary.org/blogs/emily-la…

You can watch the uncommented feed (just the control room) here: nasa.gov/multimedia/nas…

And the commented feed (with talking heads) here: mars.nasa.gov/insight/timeli…
Julie Werz Chen reports from mission control they've heard from Mars Reconnaissance Orbiter and are in telemetry lock with both MarCO-A and -B. This is promising for receiving telemetry from InSight via the cubesats live throughout the landing. #InSight #MarsLandingDay
Read 46 tweets
Profile picture
⚠️ HURRICANE FLORENCE TRACK EXPECTED TO HIT NORTH CAROLINA COAST AND RIDE DOWN SOUTH CAROLINA COAST... ⚠️

(Some changes made to the track, and slight changes in intensity although it’s still expected to be a major hurricane)
Prior Discussions:

Hurricane winds extend 70 miles on either side of the eye wall... tropical Storm Force winds extend 175 miles from there... that is a total wind field of 490 miles wide...
Read 17 tweets
Profile picture
Octopath Traveller is Final Fantasy VI + Instagram Filters. Change my mind 😜 #OctopathTraveler #FF6
Octopath is a beautiful game in many regards. It has GREAT sprite art and designs and overall art direction. The team behind it are some of the best artists in the world. However, the color grading filters really flatten everything out.
Look at the roof tiles in Octopath. They're just different shades of blue. Look at the roof tiles in Narshe in FF6. They're warmer under the glow of the moon and cooler in the shadows. A human being selected every single color. It's conveying much more information with much less.
Read 17 tweets
Profile picture
So, the Trump clan is crowing this morning about the GDP (gross domestic product) jumping up 4.1% in the last quarter. The Trump line is "the experts said we'd never break 3%", as well as lies that President Obama was stuck at 2%.
If your eyes glazed over at "GDP", here's your quick and dirty explain: the gross domestic product is how much business happens inside a country. It's seen as a snapshot of a country's economic health, though of course it's not the be-all, end-all.
But in a country with a very complicated economy and a lot of different factors in play, the measurement of how much money changes hands within it, over time, is a good way to infer if the economy is healthy and thriving.
Read 9 tweets
Profile picture
1/ The tradeoffs + unintended consequences of HOW technology gets used (or abused) is VERY real. And VERY hard to anticipate until it iswidely adopted and used as a tool by people with different values + motives.
2/ Was just reading op-ed by smart famed investor + musician Roger McNamee on ills of FB + GOOG

Many like Roger + Chamath who were prescient or lucky to make fortunes off them were not prescient to see the social ills + have joined reactive chorus condemning them... BUT..
3/ I can't help but SEE an alternate view (even if i don't fully subscribe to it)
Roger McNamee wrote an op-ed in FT today
So, knowing he loves music, I edited it
Swapping "MUSIC" for "TECH"
And on re-read he sort of kind of sounds like Tipper Gore 30 years...
Read 4 tweets
Profile picture
1) The #UraniumOne deal has been in the news a lot. I thought it would be useful to write a thread about some of facts about the US mines & the industry. To help demystify U1 so we can get a better handle on all the other issues.
2) So Uranium One is Canadian company is a wholly-owned subsidiary of ROSATOM, the Russian State Corporation for Nuclear Energy. Uranium One is responsible for ROSATOM’s uranium production outside the Russian Federation. Here’s their website.
uranium1.com
3) In 2010 ARMZ (part of ROSATOM) acquired 51% of Uranium One and in 2013 they acquired the remaining to get 100% of Uranium One. Here’s some info on the 2010 deal.
nrc.gov/docs/ML1022/ML…
Read 48 tweets

Trending hashtags

#ImperatorRex #satori #tencent #JillNotHill #MattGraver #FF6 #BrexitIsPersonal #here #ClimateBreakdown #dataviz #EquatorNews #ComeyHearing #TrustThePlan #CW #ThomasWictor #SorryNotSorry #DavidHogg #BLM #LockHerUp #BrexitandDragons #MarsLandingDay #ContentWarning #ICalledMyReps #DemExit #ButNothingsHappening

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!