LinuxCommandLibrary

dnsmap

The dnsmap command scans a domain for common subdomains e.g. smtp.domain.org.

TLDR

Scan for subdomains using the internal wordlist

$ dnsmap [example.com]
copy


Specify a list of subdomains to check for
$ dnsmap [example.com] -w [path/to/wordlist.txt]
copy


Store results to a CSV file
$ dnsmap [example.com] -c [path/to/file.csv]
copy


Ignore 2 IPs that are false positives (up to 5 possible)
$ dnsmap [example.com] -i [123.45.67.89,98.76.54.32]
copy

Copied to clipboard