Table of contents generated with markdown-toc
First off, i like to use Amass. It will give me a great amount of results and usually makes the other tools seem like nubs.
- Brew Needs to be installed
brew tap caffix/amass
brew install amass
Simple Enum:
amass enum -d example.com
Intel:
amass intel -org google
This will result in CIDR records:
amass intel -ip -src -cidr IP.IP.IP.IP
We can run other tools like SubFinder, FinDomain, dnssearch,... to complete our list, for those see the github pages.