Forrest logo
back to the amass tool

amass-enum:tldr:a460f

amass-enum: Find subdomains of a domain and actively verify them attempting to resolve the found subdomains.
$ amass enum -active -d ${domain_name} -p ${80,443,8080}
try on your machine

This command is using the "amass enum" tool to perform active enumeration on a given domain. Here is an explanation of the command's components:

  • "amass enum": This is the main command that executes the amass enumeration tool.
  • "-active": This flag specifies that active enumeration techniques should be used. Active enumeration involves actively probing and interacting with the target domain to gather information.
  • "-d ${domain_name}": This flag and variable combination specifies the target domain to enumerate. Replace ${domain_name} with the actual domain name you want to enumerate.
  • "-p ${80,443,8080}": This flag and variable combination specifies the ports to scan for during the enumeration process. ${80,443,8080} is a variable representing the ports 80, 443, and 8080. These are common ports for web services. You can customize this to include any specific ports you want to scan for.

Overall, this command will use amass to actively enumerate a given domain, scanning for open ports on the specified targets (in this case, ports 80, 443, and 8080).

This explanation was created by an AI. In most cases those are correct. But please always be careful and never run a command you are not sure if it is safe.
back to the amass tool