search

secureCodeBox / scanner-infrastructure-amass

Part of the deprecated secureCodeBox v1, see secureCodeBox/secureCodeBox Repo for v2
Apache License 2.0
7 stars 3 forks source link

Scanner gives different result than CLI tool #15

Closed Weltraumschaf closed 5 years ago

Weltraumschaf commented 5 years ago

When I run the scanner from secureCodeBox (master) against my own domain I got the result:

2fsxs.weltraumschaf.de  2fsxs.weltraumschaf.de  Subdomain   
blog.weltraumschaf.de   blog.weltraumschaf.de   Subdomain   
kapit.weltraumschaf.de  kapit.weltraumschaf.de  Subdomain   
pear.weltraumschaf.de   pear.weltraumschaf.de   Subdomain   
sxs.weltraumschaf.de    sxs.weltraumschaf.de    Subdomain   
www.weltraumschaf.de    www.weltraumschaf.de    Subdomain   
archer.weltraumschaf.de     archer.weltraumschaf.de     Subdomain   
rejoice.weltraumschaf.de    rejoice.weltraumschaf.de    Subdomain   
wedding.weltraumschaf.de    wedding.weltraumschaf.de    Subdomain   
johan.weltraumschaf.de  johan.weltraumschaf.de  Subdomain   
ci.weltraumschaf.de     ci.weltraumschaf.de     Subdomain   
2fblog.weltraumschaf.de     2fblog.weltraumschaf.de     Subdomain   
2fkapit.weltraumschaf.de    2fkapit.weltraumschaf.de    Subdomain   
2fpear.weltraumschaf.de     2fpear.weltraumschaf.de     Subdomain   
db.weltraumschaf.de     db.weltraumschaf.de     Subdomain   
2fwww.weltraumschaf.de  2fwww.weltraumschaf.de  Subdomain   
beta.weltraumschaf.de   beta.weltraumschaf.de   Subdomain   
weltraumschaf.de    weltraumschaf.de    Subdomain   
-www.weltraumschaf.de   -www.weltraumschaf.de   Subdomain   
2b-www.weltraumschaf.de     2b-www.weltraumschaf.de     Subdomain   
3awww.weltraumschaf.de  3awww.weltraumschaf.de  Subdomain

In contrast from the latest amass on CLI I got a more accurate result (w/o this "2f" or "2b-" artifacts):

weltraumschaf.de
wedding.weltraumschaf.de
archer.weltraumschaf.de
rejoice.weltraumschaf.de
www.weltraumschaf.de
blog.weltraumschaf.de
ci.weltraumschaf.de
johan.weltraumschaf.de
sxs.weltraumschaf.de
pear.weltraumschaf.de
kapit.weltraumschaf.de
git.weltraumschaf.de
Average DNS queries performed: 122/sec, DNS names remaining: 2
_xmpp-server._tcp.weltraumschaf.de
_xmpp-client._tcp.weltraumschaf.de
_jabber._tcp.weltraumschaf.de

OWASP Amass v3.0.4                                https://github.com/OWASP/Amass
--------------------------------------------------------------------------------
15 names discovered - dns: 4, scrape: 5, cert: 3, api: 2, alt: 1
--------------------------------------------------------------------------------
ASN: 24940 - HETZNER-AS, DE
        46.4.0.0/16             10   Subdomain Name(s)
        195.201.0.0/16          5    Subdomain Name(s)
J12934 commented 5 years ago

Hi Sven 👋 Thanks for the report. I'm guessing the difference is because the amass version used in the securecodebox image is slightly out of date. It's nice to see that they have apparently been able to improve their results even more 👍 I'll try to update the used version soon.

J12934 commented 5 years ago

Updated to the latest amass version, went pretty smoothly apparently no api changes.

I ran a scan against your domain and the result looked same as the expected result you posted.

I'm hoping to get a release with the update out later today.