这是一款子域名收集工具,支持子域爆破、验证、爬取、置换、接管等功能
下载github版
OneForAll需要高于Python 3.6.0的版本才能运行,检查python 和 pip3的版本
python -V
pip3 -V
git clone https://github.com/shmilylty/OneForAll.git
或者用国内码云下载更快
git clone https://gitee.com/shmilylty/OneForAll.git
安装依赖
cd OneForAll/
python3 -m pip install -U pip setuptools wheel -i https://mirrors.aliyun.com/pypi/simple/
pip3 install -r requirements.txt -i https://mirrors.aliyun.com/pypi/simple/
python3 oneforall.py --help
使用手册:
NAME
oneforall.py - OneForAll help summary page
SYNOPSIS
oneforall.py COMMAND | <flags>
DESCRIPTION
OneForAll is a powerful subdomain integration tool
Example:
python3 oneforall.py version
python3 oneforall.py check
python3 oneforall.py --target example.com run
python3 oneforall.py --targets ./domains.txt run
python3 oneforall.py --target example.com --alive False run
python3 oneforall.py --target example.com --brute False run
python3 oneforall.py --target example.com --port medium run
python3 oneforall.py --target example.com --fmt csv run
python3 oneforall.py --target example.com --dns False run
python3 oneforall.py --target example.com --req False run
python3 oneforall.py --target example.com --takeover False run
python3 oneforall.py --target example.com --show True run
Note:
--port small/medium/large See details in ./config/setting.py(default small)
--fmt csv/json (result format)
--path Result path (default None, automatically generated)
FLAGS
--target=TARGET
Type: Optional[]
Default: None
One domain (target or targets must be provided)
--targets=TARGETS
Type: Optional[]
Default: None
File path of one domain per line
--brute=BRUTE
Type: Optional[]
Default: None
Use brute module (default True)
--dns=DNS
Type: Optional[]
Default: None
Use DNS resolution (default True)
--req=REQ
Type: Optional[]
Default: None
HTTP request subdomains (default True)
--port=PORT
Type: Optional[]
Default: None
The port range to request (default small port is 80,443)
--alive=ALIVE
Type: Optional[]
Default: None
Only export alive subdomains (default False)
--fmt=FMT
Type: Optional[]
Default: None
Result format (default csv)
--path=PATH
Type: Optional[]
Default: None
Result path (default None, automatically generated)
--takeover=TAKEOVER
Type: Optional[]
Default: None
Scan subdomain takeover (default False)
COMMANDS
COMMAND is one of the following:
check
Check if there is a new version and exit
version
Print version information and exit
--dns=DNS DNS 解析子域(默认True)
--req=REQ HTTP请求子域(默认True)
--port=PORT 请求验证子域的端口范围(默认只探测80端口)
--valid=VALID 只导出存活的子域结果(默认False)
--fmt=FMT 结果保存格式(默认csv)
--path=PATH 结果保存路径(默认None)
--takeover=TAKEOVER 检查子域接管(默认False)
使用测试
python3 oneforall.py --target www.XXX.com run
默认测试结果存放在 /home/kali/OneForAll/results/XXX.com.csv