subdominator

Subdominator is an open source tool with a command line interface for identifying subdomain takeovers.
This tool comes from StratusSecurity, an Australian security company.
The source code is available at https://github.com/Stratus-Security/Subdominator

How to use it

Using the snap is pretty straight forward.

To quickly check a list of domains, simply run:

subdominator -l subdomains.txt -o takeovers.txt

Or to quickly check a single domain, run:

subdominator -d sub.example.com

Options

-d, --domain <domain>    A single domain to check

-l, --list <list>        A list of domains to check (line delimited)

-o, --output <output>    Output subdomains to a file

-t, --threads <threads>  Number of domains to check at once [default: 50]

-v, --verbose            Print extra information

-eu, --exclude-unlikely  Exclude unlikely (edge-case) fingerprints

--validate               Validate the takeovers are exploitable (where possible)

--version                Show version information

-?, -h, --help           Show help and usage information