The OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
quay.io/trickest/amass:v3.22.2
-p
Ports separated by commas (default: 443)-d
Domain names separated by commas (can be used multiple times)-noalts
Disable generation of altered names-passive
A purely passive mode of execution-ip
Show the IP addresses for discovered names-timeout
Number of minutes to execute the enumeration-bl
Blacklist of subdomain names that will not be investigated-ipv4
Show the IPv4 addresses for discovered names-ipv6
Show the IPv6 addresses for discovered names-df
Path to a file providing root domain names-active
Enable active recon methods-w
Path to a different wordlist file-brute
Perform brute force subdomain enumeration-config
Path to the INI configuration file-max-dns-queries
Deprecated flag to be replaced by dns-qps in version 4.0-norecursive
Turn off recursive brute forcing-tr
IP addresses of trusted DNS resolver-ef
Path to a file providing data sources to exclude-min-for-recursive
Subdomain labels seen before recursive brute forcing (Default: 1)-src
Print data sources for the discovered names-r
IP addresses of untrusted DNS resolver-exclude
Data source names separated by commas to be excluded-include
Data source names separated by commas to be included-aw
Path to a different wordlist file for alterations-dns-qps
Maximum number of DNS queries per second-trf
Path to a file providing trusted DNS resolvers-dir
Path to the directory containing the graph database-rf
Path to a file providing untrusted DNS resolvers-if
Path to a file providing data sources to include-trf
Path to a file providing trusted DNS resolvers-blf
Path to a file providing blacklisted subdomains-noresolvrate
Disable resolver rate monitoring-rf
Path to a file providing preferred DNS resolvers-nf
Path to a file providing already known subdomain names (from other tools/sources)-noresolvscore
Disable resolver reliability scoring-trqps
Maximum number of DNS queries per second for each trusted resolvers-rqps
Maximum number of DNS queries per second for untrusted resolversThe OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
quay.io/trickest/amass:v3.22.2
-p
Ports separated by commas (default: 443)-d
Domain names separated by commas (can be used multiple times)-noalts
Disable generation of altered names-passive
A purely passive mode of execution-ip
Show the IP addresses for discovered names-timeout
Number of minutes to execute the enumeration-bl
Blacklist of subdomain names that will not be investigated-ipv4
Show the IPv4 addresses for discovered names-ipv6
Show the IPv6 addresses for discovered names-df
Path to a file providing root domain names-active
Enable active recon methods-w
Path to a different wordlist file-brute
Perform brute force subdomain enumeration-config
Path to the INI configuration file-max-dns-queries
Deprecated flag to be replaced by dns-qps in version 4.0-norecursive
Turn off recursive brute forcing-tr
IP addresses of trusted DNS resolver-ef
Path to a file providing data sources to exclude-min-for-recursive
Subdomain labels seen before recursive brute forcing (Default: 1)-src
Print data sources for the discovered names-r
IP addresses of untrusted DNS resolver-exclude
Data source names separated by commas to be excluded-include
Data source names separated by commas to be included-aw
Path to a different wordlist file for alterations-dns-qps
Maximum number of DNS queries per second-trf
Path to a file providing trusted DNS resolvers-dir
Path to the directory containing the graph database-rf
Path to a file providing untrusted DNS resolvers-if
Path to a file providing data sources to include-trf
Path to a file providing trusted DNS resolvers-blf
Path to a file providing blacklisted subdomains-noresolvrate
Disable resolver rate monitoring-rf
Path to a file providing preferred DNS resolvers-nf
Path to a file providing already known subdomain names (from other tools/sources)-noresolvscore
Disable resolver reliability scoring-trqps
Maximum number of DNS queries per second for each trusted resolvers-rqps
Maximum number of DNS queries per second for untrusted resolvers