domain_hunter - A Burp Suite Extender that search sub domain and similar domain from sitemap,get related domains from certification

  •        1

A Burp Suite extender that search sub domains,similar domains and related domains from sitemap. Some times similar domain and related domains give you surprise^_^. that's why I care about it. 2017-07-28: Add a function to crawl all known subdomains; fix some bug.



Related Projects

tld.js - JavaScript API to work easily with complex domain names, subdomains and well-known TLDs.

  •    Javascript

tld.js is a Node.js module written in JavaScript to work against complex domain names, subdomains and well-known TLDs. It answers with accuracy to questions like what is's domain?, what is's subdomain? and is's TLD a well-known one?.

domain_analyzer - Analyze the security of any domain by finding all the information possible

  •    Python

Domain analyzer is a security analysis tool which automatically discovers and reports information about the given domain. Its main purpose is to analyze domains in an unattended way. Domain analyzer takes a domain name and finds information about it, such as DNS servers, mail servers, IP addresses, mails on Google, SPF information, etc. After all the information is stored and organized it scans the ports of every IP found using nmap and perform several other security checks. After the ports are found, it uses the tool from @verovaleros, to spider the complete web page of all the web ports found. This tool has the option to download files and find open folders.

dnssearch - A subdomain enumeration tool.

  •    Go

This software is a subdomain enumeration tool. dnssearch takes an input domain ( -domain parameter ) and a wordlist ( -wordlist parameter ), it will then perform concurrent DNS requests using the lines of the wordlist as sub domains eventually bruteforcing every sub domain available on the top level domain.

domainatrix - A cruel mistress that uses the public suffix domain list to dominate URLs by canonicalizing, finding the public suffix, and breaking them into their domain parts

  •    Ruby

A cruel mistress that uses the public suffix domain list to dominate URLs by canonicalizing, finding public suffixes, and breaking them into their domain parts. This simple library can parse a URL into its canonical form. It uses the list of domains from to break the domain into its public suffix, domain, and subdomain.

php-domain-parser - Public Suffix List based domain parsing implemented in PHP

  •    PHP

PHP Domain Parser is a Public Suffix List based domain parser implemented in PHP. While there are plenty of excellent URL parsers and builders available, there are very few projects that can accurately parse a url into its component subdomain, registrable domain, and public suffix parts.

dnstwist - Domain name permutation engine for detecting typo squatting, phishing and corporate espionage

  •    Python

See what sort of trouble users can get in trying to type your domain name. Find similar-looking domains that adversaries can use to attack you. Can detect typosquatters, phishing attacks, fraud and corporate espionage. Useful as an additional source of targeted threat intelligence. The idea is quite straightforward: dnstwist takes in your domain name as a seed, generates a list of potential phishing domains and then checks to see if they are registered. Additionally it can test if the mail server from MX record can be used to intercept misdirected corporate e-mails and it can generate fuzzy hashes of the web pages to see if they are live phishing sites.

awesome-transfer-learning - Best transfer learning and domain adaptation resources (papers, tutorials, datasets, etc


A list of awesome papers and cool resources on transfer learning, domain adaptation and domain-to-domain translation in general! As you will notice, this list is currently mostly focused on domain adaptation (DA), but don't hesitate to suggest resources in other subfields of transfer learning. I accept pull requests. Papers are ordered by theme and inside each theme by publication date (submission date for arXiv papers). If the network or algorithm is given a name in a paper, this one is written in bold before the paper's name.

aquatone - A Tool for Domain Flyovers

  •    Ruby

AQUATONE is a set of tools for performing reconnaissance on domain names. It can discover subdomains on a given domain by using open sources as well as the more common subdomain dictionary brute force approach. After subdomain discovery, AQUATONE can then scan the hosts for common web ports and HTTP headers, HTML bodies and screenshots can be gathered and consolidated into a report for easy analysis of the attack surface. AQUATONE depends on Node.js and NPM package manager for its web page screenshotting capabilities. Follow this guide for Installation instructions.

frdomain - Code repo for Functional and Reactive Domain Modeling

  •    Scala

Code repo for Functional and Reactive Domain Modeling.Functional and Reactive Domain Modeling teaches you how to think of the domain model in terms of pure functions and how to compose them to build larger abstractions. You will start with the basics of functional programming and gradually progress to the advanced concepts and patterns that you need to know to implement complex domain models. The book demonstrates how advanced FP patterns like algebraic data types, typeclass based design, and isolation of side-effects can make your model compose for readability and verifiability. On the subject of reactive modeling, the book focuses on higher order concurrency patterns like actors and futures. It uses the Akka framework as the reference implementation and demonstrates how advanced architectural patterns like event sourcing and CQRS can be put to great use in implementing scalable models. You will learn techniques that are radically different from the standard RDBMS based applications that are based on mutation of records. You'll also pick up important patterns like using asynchronous messaging for interaction based on non blocking concurrency and model persistence, which delivers the speed of in-memory processing along with suitable guarantees of reliability.

nomulus - Top-level domain name registry service on Google App Engine

  •    Java

Nomulus is an open source, scalable, cloud-based service for operating top-level domains (TLDs). It is the authoritative source for the TLDs that it runs, meaning that it is responsible for tracking domain name ownership and handling registrations, renewals, availability checks, and WHOIS requests. End-user registrants (i.e. people or companies that want to register a domain name) use an intermediate domain name registrar acting on their behalf to interact with the registry.Nomulus runs on Google App Engine and is written primarily in Java. It is the software that Google Registry uses to operate TLDs such as .GOOGLE, .HOW, .SOY, and .みんな. It can run any number of TLDs in a single shared registry system using horizontal scaling. Its source code is publicly available in this repository under the Apache 2.0 free and open source license.


  •    Javascript

Open domains is OPen Source Code, it will help you become a free domain name provider. You can create any subdomain redirect with opendomains. Build in Php4/Mysql4 . You can run it in Linux / Windows Hosting. Easy to install and create Short Domain Name

BarbBlock - Chrome extension which blocks requests to sites which have used legal threats to remove themselves from other blacklists

  •    Javascript

BarbBlock is a content blocking list with standalone browser extensions for Chrome and Firefox. It blacklists sites which have used DMCA takedowns to force removal from other content blocking lists. Such takedowns are categorically invalid, but they can be effective at intimidating small open-source projects into compliance. BarbBlock was created in response to a troubling instance where a company used the DMCA takedown process to force a domain blacklist to remove its domain. In reaction to this, some people added the domain to their personal blacklists, even those who weren't blocking it before the takedown. This phenomenon is called the Streisand Effect, and it (indirectly) gives BarbBlock its name. In essence, this extension exists to automate the Streisand effect.

adr - Action-Domain-Responder: a web-specific alternative to Model-View-Controller.

  •    HTML

Action Domain Responder organizes a single user interface interaction between an HTTP client and a HTTP server-side application into three distinct roles. Action is the logic to connect the Domain and Responder. It invokes the Domain with inputs collected from the HTTP request, then invokes the Responder with the data it needs to build an HTTP response.

BadIntent - Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

  •    Java

BadIntent is the missing link between the Burp Suite and the core Android's IPC/Messaging-system. BadIntent consists of two parts, an Xposed-based module running on Android and a Burp-plugin. Based on this interplay, it is possible to use the Burp's common workflow and all involved tools and extensions, since the intercept and repeater functionality is provided. BadIntent hooks deeply into the Android system, performs various method redirections in Parcels and adds additional services to provide the described features. Most notably, BadIntent works system-wide (experimental) and is not restricted to individual user apps. The most handy approach is to install BadIntent Android from the Xposed Module Repository and BadIntent Burp from the Burp’s BApp Store. Both are made available/submitted before the Arsenal presentation of BadIntent in Black Hat Las Vegas 2017.

CORS-Proxy - über-simple node.js-Proxy to enable CORS request for any website

  •    Javascript

The cors proxy will start at http://localhost:1337. To access another domain, use the domain name (including port) as the first folder, e.g. By default the cors proxy will only answer requests sent to localhost. To use another domain (e.g. machine name) set an enviroment variable CORSPROXY_HOST to the required value before launching.

hash-n-slash - Proof of concept for converting any content into a domain name.

  •    Javascript

Hash-n-Slash is a proof-of-concept Chrome extension that allows any text to be used as a domain name. By turning domain names into hashes, we allow for a greater flexibility of exactly what can be used to point to an online resource. This is just for fun! A proof of concept.

Domain-Driver Framework


Domain-Driver is a generic framework that enables developers to quickly build rich, expressive domain models. It is both "decoupled from" and "compatible with" any persistence technology. The download includes an example using ADO .NET Entities Framework Code-First persistence.

domain-profiler - Given a domain, will tell you the decisions that the domain owner has made.

  •    Ruby

domain-profiler is a tool that uses information from various sources (Whois, DNS, SSL, ASN) to determine what decisions have been made regarding a domain or list of domains. This version of domain-profiler only generates reports on the "Decisions that cost money".

curator - Model and repository framework

  •    Ruby

See Untangle Domain and Persistence Logic with Curator for the announcement blog post. Curator is a model and repository framework for Ruby. It's an alternative to ActiveRecord-like libraries where models are tightly coupled to persistence. Curator allows you to write domain object that are persistence free, and then write repositories that persist these objects. These ideas are largely taken from the Repository section of Domain Driven Design.