subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single domain. It fetches subdomains from various sources, checks for potential subdomain takeover vulnerabilities, saves findings to a SQLite database, and can notify updates via Discord.
- Subdomain enumeration from multiple sources:
- crt.sh
- hackertarget
- anubis
- Alienvault
- rapiddns
- urlscan.io
- Subdomain takeover scanning
- Currently supports Azure services (cloudapp.net, azurewebsites.net, cloudapp.azure.com)
- Colored terminal output for scan results
- SQLite database to store discovered subdomains
- Enhanced Discord integration
- Separate notifications for new subdomains and takeover findings
- Formatted messages with emojis and proper formatting
- Automatic file attachments for large result sets
- Rate limit handling
- Easy-to-use command-line interface
- Option to process a single domain with the
-d
flag
You can install subfalcon using the following command:
go install github.com/cyinnove/subfalcon/cmd/subfalcon@latest
subfalcon -d example.com -sdt -m -wh "YOUR_DISCORD_WEBHOOK_URL"
-l
or--domain_list
: Specify a file containing a list of domains-m
or--monitor
: Monitor subdomains and send updates to Discord-wh
or--webhook
: Specify the Discord webhook URL-d
or--domain
: Specify a single domain for processing-sdt
: Enable subdomain takeover scanning
-
Basic usage with subdomain takeover scanning:
subfalcon -d example.com -sdt
-
Monitor a single domain with takeover scanning and Discord notifications:
subfalcon -d example.com -sdt -m -wh "YOUR_DISCORD_WEBHOOK_URL"
-
Monitor multiple domains with all features:
subfalcon -l domains.txt -sdt -m -wh "YOUR_DISCORD_WEBHOOK_URL"
Feel free to contribute by opening issues or submitting pull requests.
This project is licensed under the MIT License.
Use this tool responsibly and only on systems you have permission to scan. The authors are not responsible for any misuse or damage caused by this tool.
- Add subdomain takeover scanning
- Improve Discord notifications with better formatting
- Add file attachment support for large result sets
- Add support for more takeover vulnerability patterns
- Add monitoring using Telegram
- Add more subdomain enumeration sources
- Add flags to customize monitoring time intervals
- Add concurrency for faster subdomain enumeration
- Add proxy support for requests
- Add custom output formats (JSON, CSV)
- Add vulnerability severity levels
- Add support for custom takeover patterns
- Improve error handling and logging system
If you enjoy what we do, please support us: Buy Me Ko-fi! https://ko-fi.com/h0tak88r