knock

knock

Verified 4000 Stars

Knock Subdomain Scan

guelfoweb
Bug-bounty
May 31, 2025
4000 stars
View on GitHub
Share on:
X LinkedIn Facebook WhatsApp Telegram Reddit Email
Category
Bug-bounty
GitHub Stars
4000
Project Added On
May 31, 2025
Contributors
7

README.md

View on GitHub

Knock Subdomain Scan v7

:heavy_check_mark: Fast :heavy_check_mark: Easy :heavy_check_mark: Modular

Knockpy is a portable and modular python3 tool designed to quickly enumerate subdomains on a target domain through passive reconnaissance and dictionary scan.

knockpy7

Install via pip

pip install knock-subdomains

Install via git

git clone https://github.com/guelfoweb/knock.git
cd knock
pip install .

Usage

usage: KNOCKPY [-h] [-d DOMAIN] [-f FILE] [-v] [--dns DNS] [--useragent USERAGENT]
               [--timeout TIMEOUT] [--threads THREADS] [--recon] [--bruteforce] 
               [--wordlist WORDLIST] [--json-output] [--list] [--report REPORT]

knockpy v.7.0.1 - Subdomain Scan
https://github.com/guelfoweb/knock

options:
  -h, --help            show this help message and exit
  -d DOMAIN, --domain DOMAIN
                        domain to analyze
  -f FILE, --file FILE  domain list from file path
  -v, --version         show program's version number and exit
  --dns DNS             custom dns
  --useragent USERAGENT
                        custom useragent
  --timeout TIMEOUT     custom timeout
  --threads THREADS     custom threads
  --recon               subdomain reconnaissance
  --bruteforce          subdomain bruteforce
  --wordlist WORDLIST   wordlist file to import
                        --bruteforce option required
  --wildcard            test wildcard and exit
  --json                shows output in json format
  --save FOLDER         folder to save report
  --report REPORT       shows saved report

Example

  • Start scanning domain with --recon and --bruteforce options
knockpy -d domain.com --recon --bruteforce
  • Set API KEY: VirusTotal and Shodan
export API_KEY_VIRUSTOTAL=your-virustotal-api-key
export API_KEY_SHODAN=your-shodan-api-key
  • Save the report in a folder
knockpy -d domain.com --recon --bruteforce --save report
  • Shows saved report
knockpy --report domain.com_yyyy_aa_dd_hh_mm_ss.json

Import as module

from knock import KNOCKPY

domain = 'domain.com'

results = KNOCKPY(domain, dns=None, useragent=None, timeout=None, threads=None, recon=True, bruteforce=True, wordlist=None)

print (results)

Tool Information

Author

guelfoweb

Project Added On

May 31, 2025

License

Open Source

Tags

security tool
View on GitHub

Related Tools

ZoomeyeSearch

ZoomeyeSearch

A powerful CLI tool that uses ZoomEye to search exposed services, gather intelligence, and automate reconnaissance.

Stable
NucleiPrompt

NucleiPrompt

Nuclei Prompt Scanner adalah tools berbasis Python yang memanfaatkan Nuclei dan AI Prompting untuk melakukan pemindaian kerentanan pada web target berdasarkan kategori OWASP dan lainnya, dengan antarmuka interaktif berbasis CLI (command-line).

Stable
altdns

altdns

Generates permutations, alterations and mutations of subdomains and then resolves them

Stable
View more Bug-bounty tools