Skip to content

ditmer/VhostFinder

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
utils
utils
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

VhostFinder

This tool will identify virtual hosts by performing a similarity comparison. It will generate a baseline request to attempt to map a non-existent virtual host. From there it will iterate over the supplied domains and compare them for any differences. Any significant differences will result in a virtual host being detected.

Install

go install -v github.com/wdahlenburg/VhostFinder@latest

Usage

Usage: VhostFinder -ip 10.8.0.1 -wordlist domains.txt
  -ip string
    	IP Address to Fuzz
  -path string
    	Custom path to send during fuzzing (default "/")
  -port int
    	Port to use (default 443)
  -threads int
    	Number of threads to use (default 10)
  -tls
    	Use TLS (Default: true) (default true)
  -v	Verbose mode
  -verify
    	Verify vhost is different than public url
  -wordlist string
    	File of domain names to fuzz for

What is Virtual Host Fuzzing?

Essentially the following request is sent repeatedly to a particular IP:

GET / HTTP/1.1
Host: FUZZ
Connection: close

The host header is fuzzed based on user input, while all requests are sent to the same IP.

About

Identify virtual hosts by similarity comparison

wya.pl/2022/06/16/virtual-hosting-a-well-forgotten-enumeration-technique/

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 100.0%