What is the pricing for domfind?

domfind is a free Attack Surface tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/diogo-fernan/domfind/ for download and installation instructions.

What are alternatives to domfind?

Popular alternatives to domfind include: 1. Detectify Platform - Platform for external attack surface management and application security testing (Commercial) 2. Detectify Surface Monitoring - Monitors internet-facing subdomains for vulnerabilities and misconfigurations (Commercial) 3. crt.sh - Bash script for subdomain enumeration via crt.sh certificate transparency logs. (Free) 4. Amass - Amass is an open-source OWASP tool for comprehensive attack surface mapping and asset discovery through domain reconnaissance and subdomain enumeration. (Free) 5. findmytakeover - A multi-cloud DNS security tool that detects dangling DNS records and potential subdomain takeover vulnerabilities by scanning cloud infrastructure and DNS zones. (Free) Compare these tools and more at https://cybersectools.com/categories/attack-surface

Who should use domfind?

domfind is for security teams and organizations that need DNS Security, Subdomain Enumeration. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Attack Surface tools can be found at https://cybersectools.com/categories/attack-surface

domfind | CybersecTools

domfind

Python utility for testing the existence of domain names under different TLDs to find malicious subdomains.

Free25

Visit Website

Compare

Free25

domfind

Python utility for testing the existence of domain names under different TLDs to find malicious subdomains.

Visit Website

Data verified Apr 2026

Explore Attack Surface 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

domfind Description

Attack Surface/External Attack Surface Management

Dns Security Subdomain Enumeration

domfind is a Python 3.6.x utility that tests for the existence of domain names under different Top Level Domains (TLDs). This is achieved by making a series of DNS requests for Start of Authority (SOA) records starting at the root servers and working down through the parent domains until the last parent replies with a SOA section or a NXDOMAIN response code indicating the nonexistence of the input domain name. Local or public DNS resolvers are purposefully not used in order to avoid cached records. It should be noted that the number of DNS queries performed grows linearly with the depth of the input domain and the number of TLDs to check for. For instance, sub1.sub2.domain.tld needs a total of three queries per TLD. The first one is directed at a root server, the second one goes to a NS server of domain.tld, and the third, final one to sub2.domain.tld. This utility is useful to find malicious subdomains registered under multiple TLDs that might be used for phishing campaigns. Malicious actors often use the same domain name for related or subsequent campaigns for hosting web servers, which can be proactively found with domfind as a one-off, if a domain name is known, and act

domfind Description

Attack Surface/External Attack Surface Management

Dns Security Subdomain Enumeration

domfind FAQ

Common questions about domfind including features, pricing, alternatives, and user reviews.

domfind is Python utility for testing the existence of domain names under different TLDs to find malicious subdomains. It is a Attack Surface solution designed to help security teams with DNS Security, Subdomain Enumeration.

Have more questions? Browse our categories or search for specific tools.

domfind

domfind

domfind Description

domfind Description

domfind FAQ

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES