Skip to content

Arjevan1dze/SubHunter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SubHunter.py
SubHunter.py
 
 

Repository files navigation

🔍 SubHunter

Automated subdomain reconnaissance framework for bug bounty hunting and penetration testing.

Python License Platform

📌 What is SubHunter?

SubHunter is a subdomain reconnaissance tool built for bug bounty hunters and penetration testers. It combines multiple passive enumeration sources

⚙️ How It Works

Phase 1 — Subdomain Enumeration

  • Subfinder — passive enumeration across all sources, recursive
  • Amass — passive DNS enumeration
  • Assetfinder — fast subdomain discovery
  • crt.sh — certificate transparency log search

All results are merged and deduplicated into Unfiltered.txt

Phase 2 — Live Host Filtering

  • HTTPX — probes all subdomains for live hosts
  • Detects: status codes, page titles, web technologies
  • Matches: 200, 201, 301, 302, 403, 401, 500
  • Output saved to Alive.txt
  • Unfiltered.txt is automatically deleted after

🛠️ Requirements

Required tools

  • subfinder
  • httpx
  • Python 3.x + requests library (pip install requests)

Optional tools (skipped gracefully if missing)

🚀 Usage

python3 SubHunter.py

Enter your target when prompted — any format works:

example.com
https://example.com
http://example.com/

Made by Arjevan1dze

About

Automated subdomain reconnaissance framework for bug bounty hunting and penetration testing.

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages