Closed marcelo321 closed 4 weeks ago
We consider massdns to be passive because it's only performing DNS lookups, which don't directly touch the target infrastructure. If you want to exclude it, you can do -em massdns
. Or exclude aggressive modules with -ef aggressive
.
After some consideration, I've decided to reclassify these modules as 'active`. The passive flag has also caused some confusion in the past, so I think this makes the most sense.
hi there!
So I am running this command:
bbot --targets test -f subdomain-enum -s -y -o out -rf passive
but in the middle of the scan I start seeing (not sure if it is because I pressed enter or not):
using massdns is not really passive at all, if bruteforcing is being conducted then it's active enumeration.
also as a side comment,
-s
flag just partially "silents" the output, a lot is being output even with the flag.