About

Hunting Pro is a powerful subdomain enumeration and URL extraction tool designed for security professionals. It performs comprehensive subdomain discovery using multiple sources, checks for active subdomains, extracts URLs with various tools, and identifies sensitive files and JavaScript files. The tool consolidates findings into detailed reports, streamlining the reconnaissance process for effective security assessments and vulnerability detection.

Features

• Subdomain Enumeration: Utilizes multiple tools including Subfinder, Assetfinder, Findomain, CRT.sh, and Amass to discover subdomains.
• Alive Subdomain Checking: Uses httpx-toolkit to check which discovered subdomains are actively responding.
• URL Extraction: Extracts URLs from live subdomains using Katana, gau, and Waybackurls to gather potential attack surfaces.
• Merging and Deduplication: Consolidates and removes duplicate URLs for a cleaner dataset.
• Sensitive File Discovery: Identifies potentially sensitive files such as configuration files, backups, logs and more
• JavaScript File Extraction: Extracts JavaScript files from the collected URLs to analyze potential security issues in client-side code.
• Detailed Reporting: Generates a comprehensive report summarizing all findings and results.

Resources

• Requirements
• Installation
• Usage

Requirements

• Python 3.x
• Go 1.16+ (for some tools)

Installation

Step 1: Clone the repository

$ git clone https://github.com/suhailm-in/HuntingPro.git
$ cd HuntingPro

Step 2: Install Python packages

pip3 install -r requirements.txt

Step 3: Install external tools

chmod +x install_tools.sh

./install_tools.sh

Note: If you encounter any issues with the tools, please Install them manually

Usage

• To enumerate subdomains for a single domain:

python3 huntingPro.py -d example.com

• To enumerate subdomains for multiple domains from a file:

python3 hunterpro.py -t url.txt

• Enumerate subdomains for a single domain with a custom timeout:

python3 hunterpro.py -d example.com -s 180

Note: Increasing the timeout value will result in more accurate results, as it allows more time for the tools to complete their operations.

Options

• -d, --domain: The target domain for active enumeration
• -t, --target-file: File containing a list of target domains for passive enumeration
• -s, --seconds: Timeout in seconds for each tool (default: 120 seconds)
• -v, --version: show program's version number and exit
• -u, --update: Update Hunting Pro to the latest version

Output

The tool generates a folder named "Result" containing the results. Inside this folder, you will find:

License

This project is Licensed under the GNU GPLv3 - see the LICENSE for more information.

Acknowledgements

• Subfinder
• Assetfinder
• Findomain
• Amass
• httpx-toolkit
• Katana
• gau
• Waybackurls

Developed by

Suhail M

Ethical Hacker, Penetration Tester, and AI Researcher in Cybersecurity

Connect with me: