A stealthy, server-friendly HTTPS scanner written in Rust that discovers subdomains through certificate transparency logs (crt.sh), resolves their IP addresses, and verifies website availability.
- Subdomain Discovery: Leverages crt.sh (Certificate Transparency logs) to find subdomains of target domains
- IP Resolution: Maps discovered subdomains to their hosting IP addresses
- Website Status Checking: Verifies availability and HTTP status of discovered websites
- Low Detection Profile: Implements techniques to avoid being detected as a scanning tool
- Server-Friendly Design: Uses rate limiting and considerate scanning techniques to minimize impact on target servers
- Comprehensive Reporting: Generates clear reports showing the relationships between domains, IPs, and availability
You can download the latest compiled version for Linux_AMD64 and Windows_AMD64 from the release page.
-> https://code.mymiggi.de/Miggi/analytic-intelligence/releases
- Rust and Cargo (latest stable version)
- OpenSSL development libraries
# Clone the repository
git clone https://code.mymiggi.de/Miggi/analytic-intelligence.git
cd analytic-intelligence
# Build the project
cargo build --release
# The binary will be available at target/release/analytic-intelligencecargo install --git https://code.mymiggi.de/Miggi/analytic-intelligence.git# Scan a domain
analytic-intelligence example.com📧 E-Mail Server: 5 mail.tutanota.de.
IP: 104.21.32.1 (AS13335 Cloudflare, Inc., US, San Francisco)
✅ mymiggi.de
↪ Michael Hainz | Developer & Gaming Enthusiast
IP: 188.114.97.3 (AS13335 Cloudflare, Inc., DE, Munich)
✅ ha1nz.de
↪ Michael Hainz | Developer & Gaming Enthusiast
IP: 104.21.64.1 (AS13335 Cloudflare, Inc., US, San Francisco)
✅ www.mymiggi.de
↪ Michael Hainz | Developer & Gaming Enthusiast
IP: 104.21.96.1 (AS13335 Cloudflare, Inc., US, San Francisco)
❌ analytics.mymiggi.de
↪ Client error: 404 Not Found
✅ code.mymiggi.de
↪ Forgejo: Git with a cup of tea
IP: 78.46.191.125 (AS24940 Hetzner Online GmbH, DE, Falkenstein)
✅ social.mymiggi.de
↪ Miggi's - GoToSocial
❌ apis.mymiggi.de
↪ Client error: 404 Not Found
✅ ip2.mymiggi.de
↪ Portainer
✅ poll.mymiggi.de
↪ Login
❌ traefik-hetzner.mymiggi.de
↪ Client error: 401 Unauthorized
✅ monitor.mymiggi.de
↪ Beszel
✅ nextcloud.mymiggi.de
↪ Login – Miggi's Cloud
✅ sso.mymiggi.de
↪ Login
IP: 62.171.132.231 (AS51167 Contabo GmbH, DE, Frankfurt am Main)
❌ traefik.mymiggi.de
↪ Client error: 401 Unauthorized
✅ plan.mymiggi.de
↪ Plan | Player Analytics
IP: unknown
❌ syncv3.mymiggi.de
↪ error sending request for url (https://syncv3.mymiggi.de/)
❌ demo.mymiggi.de
↪ error sending request for url (https://demo.mymiggi.de/)
IP: 185.205.69.10 (AS210909 Tutao GmbH, DE, Frankfurt am Main)
❌ mta-sts.mymiggi.de
↪ Client error: 404 Not Found
Analytic Intelligence queries certificate transparency logs via crt.sh to discover subdomains. This method is passive and doesn't require sending traffic to the target domain, making it highly stealthy and efficient.
The tool performs DNS lookups on discovered subdomains to determine their hosting IP addresses. The resolver is configured to use multiple DNS providers and implements caching to reduce lookup volume.
For each discovered subdomain, the tool sends carefully crafted HTTP/HTTPS requests to check availability. These requests:
- Use common used user agent
- Implement backoff between requests
Contributions are welcome! Please feel free to submit a Pull Request to our repository at https://code.mymiggi.de/Miggi/analytic-intelligence.
- Fork the repository
- Create your feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add some amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
This project is licensed under the MIT License - see the LICENSE file for details.