A PHP-based tool designed to brute force virtual hosts configured on a server by testing subdomains against a target IP.
A PHP tool to brute force vhost configured on a server.
This tool is primarily used by penetration testers and red teamers to discover hidden or misconfigured virtual hosts on a target server by brute forcing subdomains. It helps identify potential attack surfaces that rely on virtual host configurations, enabling security professionals to assess and exploit network infrastructure weaknesses.
Ensure the target server allows HTTP requests to the tested virtual hosts and that you have permission to perform brute forcing activities to avoid legal issues. Adjust the similarity threshold (--st) carefully to accurately distinguish valid virtual hosts from default or error pages. Using multiple threads (--threads) can speed up testing but may increase load on the target server.
Clone the repository using git: git clone https://github.com/gwen001/vhost-brutephp vhost-brute.php --ip xxx.xxx.xxx.xxx --domain example.com --wordlist sub.txt --threads 5
Runs the vhost brute force tool against the specified IP and domain using the provided subdomain wordlist with 5 concurrent threads.
php vhost-brute.php --help
Displays help information and usage options for the tool.