subdomain-deep
OfficialMaximize subdomain discovery across DNS, OSINT, and crawling.
Authorwgpsec
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Deeply discovers and consolidates subdomains when single-source DNS enumeration is insufficient, improving asset coverage and reducing missed exposures caused by CDNs, wildcard DNS, or removed DNS records.
Core Features & Use Cases
- Multi-source Enumeration: Combine DNS brute-force, passive OSINT aggregation, and web crawling to maximize coverage.
- Wildcard and CDN Handling: Detect and filter wildcard DNS results using HTTP response comparison and identify CDN CNAMEs and potential dangling S3 buckets.
- Result Deduplication & Prioritization: Merge, deduplicate, and categorize findings into web, API, admin, dev, and internal systems for prioritized follow-up.
- Use Case: When DNS-only scans return limited results for a corporate domain, run this workflow to discover hidden staging, admin, and API subdomains that could expose vulnerabilities.
Quick Start
Run a deep subdomain enumeration for example.com by combining passive OSINT sources, DNS brute-force, and a site crawler, then filter wildcard results and return a deduplicated categorized list.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: subdomain-deep Download link: https://github.com/wgpsec/AboutSecurity/archive/main.zip#subdomain-deep Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.