Asset Inventory

Subdomain Enumeration:

Passive Subdomain Enumeration (Part 1) - CheckmateCheckmate

Active Subdomain Enumeration (Part 2) - CheckmateCheckmate

Note:

• All the passive techniques will be covered by subdomain enumeration tools ex: subfinder, Amass etc.

• In order to cover the active enumeration, we need a good word lists and resolver list for finding the subdomains. Ex: massdns, puredns.