PortWitness is a bash tool designed to find out active domain and subdomains of websites using port scanning. It helps penetration testers and bug hunters collect and gather information about active subdomains for the domain they are targeting.PortWitness enumerates subdomains using Sublist3r and uses Nmap along with nslookup to check for active sites.Active domain or sub-domains are finally stored in an output file.Using that Output file a user can directly start testing those sites.
Sublist3r has also been integrated with this module.It’s very effective and accurate when it comes to finding out which sub-domains are active using Nmap and nslookup.
This tool gather all websites IP address and keeps in One txt file.
This tool has been created using bash scripting so all you require is a Linux machine.
bash portwitness.sh url