Metadata-Version: 2.1
Name: gsan
Version: 3.0.14
Summary: Extract subdomains from HTTPS sites
Home-page: https://franccesco.github.io/getaltname/
Author: Franccesco Orozco
Author-email: franccesco@codingdose.info
License: UNKNOWN
Description: # GSAN (Get Subject Alternative Names)
        
        [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/gsan.svg)](https://pypi.org/project/gsan/) [![PyPI](https://img.shields.io/pypi/v/gsan.svg)](https://pypi.org/project/gsan/) [![Build Status](https://travis-ci.org/franccesco/getaltname.svg?branch=master)](https://travis-ci.org/franccesco/getaltname) [![Coverage Status](https://coveralls.io/repos/github/franccesco/getaltname/badge.svg?branch=master)](https://coveralls.io/github/franccesco/getaltname?branch=master) [![GitHub license](https://img.shields.io/github/license/franccesco/getaltname.svg)](https://github.com/franccesco/getaltname/blob/master/LICENSE.md)
        
        
        **GSAN** (**G**et **S**ubject **A**lternative **N**ames) is a tool that can extract [Subject Alternative Names](https://en.wikipedia.org/wiki/Subject_Alternative_Name) found in SSL Certificates **directly** from **HTTPS** web sites which can provide you with DNS names (subdomains) or virtual servers.
        
        This tool extract subdomain names from http**s** sites and return a list or json output of its findings. It is _**not**_ a subdomain brute-force tool, and you can [actually find those subdomains manually](https://gfycat.com/AnotherDizzyDodobird), this tools is about the automation of that process, it also offers the following features:
        * Input a single **host or Nmap XML file** to scan and return subdomains.
        * **List or JSON output**, useful if you want to export data into other tools.
        * You can _optionally_ **filter out domain names** that doesn't match the domain name that you're analyzing.
        * **Integration with crt.sh** so you can extract more subdomains from certificates of the same entity.
        * Also works with **Self-signed** certificates.
        * **Copy to your clipboard** the domain names as a _list_ or _string_ if you don't want to deal with files, this is also useful for tools that doesn't accept file input.
        
        You can read more about how this tool works from my post in [getroot.info](https://getroot.info/tip-getaltname/) (in Spanish).
        
        # Usage:
        ```
        
             ██████╗    ███████╗    █████╗    ███╗   ██╗
            ██╔════╝    ██╔════╝   ██╔══██╗   ████╗  ██║
            ██║  ███╗   ███████╗   ███████║   ██╔██╗ ██║
            ██║   ██║   ╚════██║   ██╔══██║   ██║╚██╗██║
            ╚██████╔╝██╗███████║██╗██║  ██║██╗██║ ╚████║
             ╚═════╝ ╚═╝╚══════╝╚═╝╚═╝  ╚═╝╚═╝╚═╝  ╚═══╝
        
               Get - Subjective - Alternative - Names
        
        usage: gsan [-h] [-p PORT] [-s [timeout]] [-m] [-q] [-o OUTPUT]
                           [-f {json,text}] [-c {l,s}] [-d] [-V]
                           hostname
        
        positional arguments:
          hostname                              Host or Nmap XML to analyze.
        
        optional arguments:
          -h, --help                            show this help message and exit
          -p PORT, --port PORT                  Destiny port (default 443)
          -s [timeout], --search-crt [timeout]  Retrieve subdomains found in crt.sh
          -m, --match-domain                    Matching domain names only
          -q, --quiet                           Supress output.
          -o OUTPUT, --output OUTPUT            Set output filename
          -f {json,text}, --format {json,text}  Set output format
          -c {l,s}, --clipboard {l,s}           Copy the output to the clipboard as a
                                                List or a Single string
          -d, --debug                           Set debug enable
          -V, --version                         Print version information.
        ```
        
        # Example
        In this case the tool give you sub-domains that you probably didn't find with a sub-domain brute force tool.
        
        ![Example Image](assets/screenshot.png)
        
        # Demo
        *Disclaimer: The tool was renamed from getaltname to GSAN.*
        [![asciicast](https://asciinema.org/a/bYYnK76AQJZFP9hj43e3CUaH5.png)](https://asciinema.org/a/bYYnK76AQJZFP9hj43e3CUaH5)
        
        # Installation
        ```bash
        $ pip install --user gsan
        ```
        
        # TO-DO
        - [x] File output
        - [x] Output to clipboard
        - [x] Clean sub-domains wildcards
        - [x] Remove duplicates
        - [x] A filter system for main domain and TLD's.
        - [x] Add colors (so l33t. /s)
        - [x] Get additional sub-domains from crt.sh
        - [x] Read Nmap XML and analyze them
        - [x] JSON Output
        - [x] Unit Tests
        - [x] Coverage Reports
        
        # Contributors
        * [**Djerfy**](https://github.com/djerfy) - **JSON output**.
        
        # Contribution Guidelines
        Contribution is welcome, just remember:
        * **Fork** the repo.
        * Make changes to the **_develop_** branch.
        * Make a **Pull Request.**
        
        # Support this project
        If you like the project and would like to support me you can buy me a cup of coffee, you will also be inmortalized as a patreon, thank you 🙏
        
        <a href="https://www.paypal.me/orozcofranccesco">
          <img height="32" src="assets/paypal_badge.png" />
        </a> <a href="https://www.buymeacoffee.com/franccesco" target="_blank"><img src="https://www.buymeacoffee.com/assets/img/custom_images/white_img.png" alt="Buy Me A Coffee" style="height: auto !important;width: auto !important;" ></a> <a href='https://ko-fi.com/V7V8AXFE' target='_blank'><img height='36' style='border:0px;height:36px;' src='https://az743702.vo.msecnd.net/cdn/kofi2.png?v=0' border='0' alt='Buy Me a Coffee at ko-fi.com' /></a>
        
Platform: UNKNOWN
Classifier: Programming Language :: Python :: 3
Classifier: License :: OSI Approved :: MIT License
Classifier: Operating System :: OS Independent
Requires-Python: ~=3.4
Description-Content-Type: text/markdown
