This repository is an implementation of Ostorlab Agent for the dnsReaper subdomain takeover tool by punk-security.
To perform your first scan, simply run the following command:
ostorlab scan run --install --agent agent/mohsinenar/dns_reaper domain-name sub.domain.com ostorlab agent install agent/mohsinenar/dns_reaper You can then run the agent with the following command:
ostorlab scan run --agent agent/mohsinenar/dns_reaper domain-name sub.domain.com - To build the nmap agent you need to have ostorlab installed in your machine. if you have already installed ostorlab, you can skip this step.
pip3 install ostorlab - Clone this repository.
git clone https://github.com/mohsinenar/agent_dns_reaper.git && cd agent_dns_reaper - Build the agent image using ostorlab cli.
ostortlab agent build --file=ostorlab.yaml You can pass the optional flag --organization to specify your organisation. The organization is empty by default.
4. Run the agent using on of the following commands:
*If you did not specify an organization when building the image:
shell ostorlab scan run --agent agent//dns_reaper ip 8.8.8.8
*If you specified an organization when building the image:
shell ostorlab scan run --agent agent/[ORGANIZATION]/dns_reaper ip 8.8.8.8
This agent can be used with other agents from ostorlab store. to perform a full scan on a specefic target.
Let say we want to scan all subdomains of example.com and example2.com for subdomain takeover
we can simply use https://github.com/Ostorlab/agent_subfinder to collect all subdomains of example.com & example2.com and dns_reaper will pick all subdomais from subfinder and run a scan on them.
by running the following scan command
ostorlab scan run -i --agent=agent/mohsinenar/dns_reaper --agent=agent/ostorlab/subfinder domain-name example.com example2.com```
## License
[Apache-2.0](./LICENSE)