What Sources Does Nova Security's Subdomain Enumeration Tool Include?

Nova Security

Nov 20, 2023 — 1 min read

Commonly asked question: "What Sources Does Nova Security's Subdomain Enumeration Tool Include?"

A common question asked by many people who are interested in our ASM Solution is "What Sources Does Our Subdomain Enumeration Tool Include?".

In this article you'll find a comprehensive list of all the sources we use to deliver you the most result for your subdomain enumeration scan.

In Short:

SSL Certificate Logs
HTTP Response (Headers & Body)
Private Vault by Nova Security
DNS Queries (Zone Transfers, etc.)
DNS/Subdomain Bruteforcing
Internet Archives
Google Tag Manager
GitHub (optional)
Shodan (optional)
Security Trails (optional)
Virus Total (optional)

ℹ️

Optional sources are only used if a valid API key has been supplied.

More sources and methods will be included (such as bruteforcing) with the aim to find as much data about a target as possible as development on Nova Security progresses.

Want To Monitor Subdomains Daily?

But like without the hassle & setup process? First 3-days are on us.

GET STARTED FOR FREE TODAY

Exploring Hidden Attack Surfaces: Performing Better Content Discovery

Exploring Hidden Attack Surfaces is a new blog post series curated by Nova Security for the community to help you on your way to discover any attack surfaces that most current tools are not capable of. Part 2 is dedicated to performing better content discovery so that you can have

What Is Targeted Bruteforcing?

Targeted bruteforcing in content discovery is a lesser-known and more sophisticated technique of bruteforcing. It is also a more effective approach and it likely also yields more accurate results. In content discovery, targeted bruteforcing consists of 2 separate steps. The first step is to identify the technologies used by the

What is DNS (Subdomain) Bruteforcing?

If you are an experience penetration tester, bug bounty hunter or have experience in web security, you probably have heard of DNS or Subdomain bruteforcing before. It is a technique often used in the reconnaissance phase of your testing to further help map out your entire attack surface. What is

What Is An Automated Web Security Audit?

An automated web security audit is a process of using scanners to scan (such as Nova Security Scanner) and test web applications for security vulnerabilities and misconfigurations. The goal of an automated web security audit is to identify and mitigate any potential security risks before they can be exploited by