DomainSpotter is a simple bash script designed to query the Certspotter Certificate Transparency (CT) log for domain and subdomain discovery. It leverages the Certspotter API to find related domains based on SSL certificate issuances.
- Search for domains and subdomains from Certspotter CT logs.
- Option to save results to a file or print to standard output.
- Supports Certspotter API keys for higher rate limits.
- Clean and unique domain output, ready for further processing.
- Silent mode for automated workflows.
- Ensure you have
curlandjqinstalled - Download and Install (Recommended):
sudo curl -o /usr/local/bin/domainspotter https://raw.githubusercontent.com/TheArqsz/domainspotter/main/domainspotter.sh
sudo chmod +x /usr/local/bin/domainspotter- Alternative - clone the repository:
git clone https://github.com/TheArqsz/domainspotter.git
cd domainspotterUsage: ./domainspotter.sh [OPTIONS]
Options:
-d, --domain <domain> Search for a specific domain name (e.g., hackerone.com)
-o, --output <file> File to save results. If not set, results are printed to stdout.
-a, --apikey Certspotter's API key.
-s, --silent Suppress any non-essential output.
-h, --help Display this help message
Examples:
./domainspotter.sh --domain hackerone.com
./domainspotter.sh --domain example.com --output ./results.txt
./domainspotter.sh -d example.com -s | httpxWhile DomainSpotter can be used without an API key, Certspotter has strict rate limits for unauthenticated requests. For more consistent and reliable results, especially during extensive recon, it is highly recommended to obtain and use a free API key from Certspotter.
This project is licensed under the MIT License - see the LICENSE file for details.