mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-16 20:55:17 +03:00
1.6 KiB
1.6 KiB
Workflows — Subdomain Enumeration with Subfinder
Standard Enumeration Workflow
- Configure API keys in provider-config.yaml for maximum source coverage
- Run subfinder with
-allflag against target domain(s) - Deduplicate results and remove out-of-scope entries
- Validate live hosts with httpx including status codes and technologies
- Resolve DNS records with dnsx to map IP infrastructure
- Screenshot live hosts with gowitness for visual review
- Feed live hosts into vulnerability scanner (nuclei) for automated checks
Continuous Monitoring Workflow
- Schedule subfinder runs via cron (daily or weekly)
- Compare new results against baseline subdomain list
- Alert on newly discovered subdomains via webhook or email
- Automatically scan new subdomains for known vulnerabilities
- Update asset inventory with new discoveries
Bug Bounty Recon Pipeline
- Collect target domains from bug bounty program scope
- Run subfinder + amass + findomain for maximum coverage
- Merge and deduplicate all results
- Filter results to in-scope assets only
- Probe for live HTTP services with httpx
- Run nuclei templates for quick wins
- Manually investigate interesting subdomains (dev, staging, api, admin)
Integration Commands
# Full pipeline example
subfinder -d target.com -all -silent | \
httpx -silent -status-code -title -tech-detect | \
tee live_hosts.txt | \
nuclei -t cves/ -t exposures/ -t misconfigurations/ -o findings.txt
# Delta monitoring
subfinder -d target.com -silent > today_subs.txt
comm -13 <(sort baseline_subs.txt) <(sort today_subs.txt) > new_subs.txt