subtrace is a tool designed to simplify the search for subdomains across various APIs and services, using YAML templates. The goal is to make the work of pentesters and bug hunters easier by offering a practical and efficient solution for subdomain enumeration.
First, make sure that `cargo` is installed on your system.
For Debian or Arch-based systems, you can use the following commands:
### Debian/Ubuntu:
sudo apt install cargo
### Arch-based:
sudo pacman -S cargo
### Fedora:
sudo dnf install cargo
...After installing cargo, compile the code using the following command:
cargo build --releaseThen, move the compiled binary to /usr/bin/ to make it globally accessible:
sudo mv target/release/subtrace /usr/bin/subtrace --helpThe command above results in the output below, displaying all the tool parameters and available options
Subdomain Enumeration tool
Usage: subtrace [OPTIONS] --domain <DOMAIN> --templates <TEMPLATE_DIRECTORY>
subtrace <COMMAND>
TARGET:
-d, --domain <DOMAIN>
Specify the main domain to search for subdomains.
TEMPLATE:
-t, --templates <TEMPLATE_DIRECTORY>
Specify the directory with templates for subdomain scanning.
--list-templates
List all templates.
OUTPUT:
-o, --output <OUTPUT_FILE>
Specify the filename to write the output to.
--silent
Suppress verbose output and display only the findings.
OPTIMIZATIONS:
-c, --concurrency <CONCURRENCY>
Set the maximum number of templates to be executed in parallel (Default:12).
DEBUG:
--debug <DEBUG>
Set the debug level: 0 = ERROR, 1 = WARN, 2 = INFO, 3 = DEBUG
OPTIONS:
-h, --help
Show this help message and exit.subtrace is released under MIT license. See LICENSE.