subdomains also included in urls by waybackurls in extractor.sh

[swajyadip1997]

To do not include subdomains of targets in waybackurls "-no-subs" flag need to use. The resulting command will be " waybackurls -no-subs $1 "

[harsh-bothra]

Hi, While extracting the URLs from Wayback and gau we are considering subdomains as well to automate further for XSS and other automation workflows. Do you have any specific reason why it's not a good idea to include subdomains?

[swajyadip1997]

Sometime the subdomains included are not owned by targets, sometimes it gives false positive and also possible of going out of scope.

[swajyadip1997]

False positive in sense they do not resolved

[swajyadip1997]

One suggestion , we can run extractor.sh for all in scope subdomains.