100 Days of Web Pentest

Day 1

Subdomain Enumeration

The best tool to use to amass. In Kali:

amass enum -d <domain>

Alternatively, though successful rate is low, it is possible to use Zone Transfer

nslookup -type=NS <domain>
dig @<name_server> axfs <domain>

Mindmapping

An open-source tool to use is mindmapp

sudo apt install npm -y
git clone https://github.com/Mindmapp/mindmapp.git
cd mindmapp
npm i
npm start
# http://locahost:4200

PreviousCLI

Last updated