mortymap is a Bash script designed for security professionals and penetration testers. It automates the process of domain enumeration, subdomain discovery, live subdomain detection, screenshot capturing of live domains, and comprehensive port scanning using a suite of security tools.
- Subdomain Discovery: Utilizes subfinder, assetfinder, and amass for thorough subdomain enumeration.
- Live Subdomain Detection: Filters live subdomains using httprobe.
- Screenshot Capturing: Takes screenshots of live subdomains with gowitness.
- Port Scanning: Conducts an exhaustive port scan using nmap.
Before using mortymap ensure the following are installed:
- Subfinder
- Assetfinder
- Amass
- Httprobe
- Gowitness
- Nmap
Clone the repository:
Use
git clone to clone a repository.
To run the script
./mortymap.sh <domain>
- Directory Structure Creation: The script first checks for the existence of directories needed for storing data and creates them if they do not exist.
- Subdomain Enumeration: Runs subfinder, assetfinder, and amass sequentially, storing all found subdomains in a text file.
- Live Subdomain Detection: Processes the list of found subdomains to identify which ones are live.
- Screenshot Capturing: Uses gowitness to capture screenshots of the live subdomains.
- Port Scanning: Performs an exhaustive port scan on the live subdomains using nmap.
Contributions to mortymap are welcome. Please adhere to the following guidelines:
- Fork the repository.
- Create a new branch for your feature.
- Commit your changes.
- Push to the branch and open a pull request.