Details

Category: Recon

Publisher: trickest

Created Date: 6/23/2021

Container: quay.io/trickest/amass:v3.22.2

Source URL: https://github.com/owasp-amass/amass

Parameters

ports
string
Command: -p - Ports separated by commas (default: 443)
domain
string
required
Command: -d - Domain names separated by commas (can be used multiple times)
no-alts
boolean
Command: -noalts - Disable generation of altered names
passive
boolean
Command: -passive - A purely passive mode of execution
show-ip
boolean
Command: -ip - Show the IP addresses for discovered names
timeout
string
Command: -timeout - Number of minutes to execute the enumeration
blacklist
string
Command: -bl - Blacklist of subdomain names that will not be investigated
show-ipv4
boolean
Command: -ipv4 - Show the IPv4 addresses for discovered names
show-ipv6
boolean
Command: -ipv6 - Show the IPv6 addresses for discovered names
domain-list
file
Command: -df - Path to a file providing root domain names
active-methods
boolean
Command: -active - Enable active recon methods
wordlist-brute
file
Command: -w - Path to a different wordlist file
bruteforce-flag
boolean
Command: -brute - Perform brute force subdomain enumeration
ini-config-file
file
Command: -config - Path to the INI configuration file
max-dns-queries
string
Command: -max-dns-queries - Deprecated flag to be replaced by dns-qps in version 4.0
no-recursive-bf
boolean
Command: -norecursive - Turn off recursive brute forcing
trusted-resolver
string
Command: -tr - IP addresses of trusted DNS resolver
exclude-data-file
file
Command: -ef - Path to a file providing data sources to exclude
min-for-recursive
string
Command: -min-for-recursive - Subdomain labels seen before recursive brute forcing (Default: 1)
print-data-sources
boolean
Command: -src - Print data sources for the discovered names
untrusted-resolver
string
Command: -r - IP addresses of untrusted DNS resolver
exclude-source-names
string
Command: -exclude - Data source names separated by commas to be excluded
include-data-sources
string
Command: -include - Data source names separated by commas to be included
wordlist-alternations
file
Command: -aw - Path to a different wordlist file for alterations
dns-queries-per-second
string
Command: -dns-qps - Maximum number of DNS queries per second
trusted-resolvers-file
string
Command: -trf - Path to a file providing trusted DNS resolvers
graph-database-directory
folder
Command: -dir - Path to the directory containing the graph database
untrusted-resolvers-file
file
Command: -rf - Path to a file providing untrusted DNS resolvers
include-data-sources-file
file
Command: -if - Path to a file providing data sources to include
trusted-dns-resolvers-file
file
Command: -trf - Path to a file providing trusted DNS resolvers
blacklisted-subdomains-file
file
Command: -blf - Path to a file providing blacklisted subdomains
no-resolver-rate-monitoring
boolean
Command: -noresolvrate - Disable resolver rate monitoring
untrusted-dns-resolvers-file
file
Command: -rf - Path to a file providing preferred DNS resolvers
already-known-subdomain-names
file
Command: -nf - Path to a file providing already known subdomain names (from other tools/sources)
no-resolver-reliability-score
boolean
Command: -noresolvscore - Disable resolver reliability scoring
trusted-dns-max-queries-per-second
string
Command: -trqps - Maximum number of DNS queries per second for each trusted resolvers
untrusted-dns-max-queries-per-second
string
Command: -rqps - Maximum number of DNS queries per second for untrusted resolvers