AMASS
1. Amass is a powerful tool for in-depth network mapping and DNS enumeration, primarily used to discover subdomains and infrastructure.
2. It supports passive and active reconnaissance techniques, integrating multiple sources like APIs, web archives, and brute-forcing for domain enumeration.
3. Amass can create detailed network graphs and export the gathered information in formats like JSON and GEXF for further analysis.
Example 1. Perform passive subdomain enumeration: `amass enum -passive -d example.com`
2. Conduct active reconnaissance with brute force and recursive searches: `amass enum -active -brute -d example.com`
1. Amass is a powerful tool for in-depth network mapping and DNS enumeration, primarily used to discover subdomains and infrastructure.
2. It supports passive and active reconnaissance techniques, integrating multiple sources like APIs, web archives, and brute-forcing for domain enumeration.
3. Amass can create detailed network graphs and export the gathered information in formats like JSON and GEXF for further analysis.
Example 1. Perform passive subdomain enumeration: `amass enum -passive -d example.com`
2. Conduct active reconnaissance with brute force and recursive searches: `amass enum -active -brute -d example.com`