这是indexloc提供的服务,不要输入任何密码
Skip to content

Add new source: jsmon for subdomain discovery #1617

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 4 commits into from
Closed

Add new source: jsmon for subdomain discovery #1617

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
f189423
made a new source jsmon for finding the subdomains
nandini-56 Jul 15, 2025
f6dc834
added netlas back
nandini-56 Jul 16, 2025
156ab5c
added the source as jsmon in subfinder
nandini-56 Aug 7, 2025
9ac6516
changed the baseUrl from variable to a constants
nandini-56 Aug 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions v2/pkg/passive/sources.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,7 @@ import (
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/hudsonrock"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/hunter"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/intelx"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/jsmon"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/leakix"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/netlas"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/pugrecon"
Expand Down Expand Up @@ -66,6 +67,7 @@ var AllSources = [...]subscraping.Source{
&chinaz.Source{},
&commoncrawl.Source{},
&crtsh.Source{},
&jsmon.Source{},
&digitorus.Source{},
&dnsdb.Source{},
&dnsdumpster.Source{},
Expand Down
2 changes: 1 addition & 1 deletion v2/pkg/runner/options.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -255,7 +255,7 @@ var defaultRateLimits = []string{
"whoisxmlapi=50/s",
"securitytrails=2/s",
"sitedossier=8/m",
"netlas=1/s",
"netlas=1/s",
// "gitlab=2/s",
"github=83/m",
"hudsonrock=5/s",
Expand Down
145 changes: 145 additions & 0 deletions v2/pkg/subscraping/sources/jsmon/jsmon.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,145 @@
// Package jsmon logic
package jsmon

import (
"bytes"
"context"
"fmt"
"io"
"strings"
"time"

jsoniter "github.com/json-iterator/go"
"github.com/projectdiscovery/subfinder/v2/pkg/subscraping"
)

const (
baseUrl = "https://api.jsmon.sh"
)

type subdomainsResponse struct {
Subdomains []string `json:"subdomains"`
Status string `json:"status"`
Message string `json:"message"`
}

type Source struct {
apiKeys []string
timeTaken time.Duration
errors int
results int
skipped bool
}

func (s *Source) Run(ctx context.Context, domain string, session *subscraping.Session) <-chan subscraping.Result {
results := make(chan subscraping.Result)
s.errors = 0
s.results = 0

go func() {
defer func(startTime time.Time) {
s.timeTaken = time.Since(startTime)
close(results)
}(time.Now())

if len(s.apiKeys) == 0 {
s.skipped = true
return
}

// Parse API key in format: apiKey:wkspId
var authToken, wkspId string
if len(s.apiKeys) > 0 {
apiKeyString := s.apiKeys[0]

// Find the last two colons to split properly
lastColonIndex := strings.LastIndex(apiKeyString, ":")
if lastColonIndex == -1 {
fmt.Printf("[DEBUG] No colons found in API key\n")
s.skipped = true
return
}
authToken = apiKeyString[:lastColonIndex]
wkspId = apiKeyString[lastColonIndex+1:]

}

subfinderScanURL := fmt.Sprintf("%s/api/v2/subfinderScan2?wkspId=%s", baseUrl, wkspId)

requestBody := fmt.Sprintf(`{"domain":"%s"}`, domain)

headers := map[string]string{
"X-Jsmon-Key": authToken,
"Content-Type": "application/json",
}

resp, err := session.Post(ctx, subfinderScanURL, "", headers, bytes.NewReader([]byte(requestBody)))
if err != nil {
// fmt.Printf("[DEBUG] Request error: %v\n", err)
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
s.errors++
session.DiscardHTTPResponse(resp)
return
}

// fmt.Printf("[DEBUG] Response status: %d\n", resp.StatusCode)

if resp.StatusCode != 200 {
// Read response body for error details
body, _ := io.ReadAll(resp.Body)
// fmt.Printf("[DEBUG] Error response body: %s\n", string(body))
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: fmt.Errorf("subfinderScan API returned status %d: %s", resp.StatusCode, string(body))}
s.errors++
session.DiscardHTTPResponse(resp)
return
}

var response subdomainsResponse
err = jsoniter.NewDecoder(resp.Body).Decode(&response)
if err != nil {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
s.errors++
session.DiscardHTTPResponse(resp)
return
}

session.DiscardHTTPResponse(resp)

for _, subdomain := range response.Subdomains {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Subdomain, Value: subdomain}
s.results++
}

}()

return results
}

func (s *Source) Name() string {
return "jsmon"
}

func (s *Source) IsDefault() bool {
return true
}

func (s *Source) HasRecursiveSupport() bool {
return false
}

func (s *Source) NeedsKey() bool {
return true
}

func (s *Source) AddApiKeys(keys []string) {
s.apiKeys = keys
}

func (s *Source) Statistics() subscraping.Statistics {
return subscraping.Statistics{
Errors: s.errors,
Results: s.results,
TimeTaken: s.timeTaken,
Skipped: s.skipped,
}
}