RedTeam
2.Scanning-and-Enumeration
2.Enumeration
Subdomain
Fofa

What is FOFA?

FOFA.info is an online search engine focused on providing access to Internet-connected devices and services. It allows users to search for various types of devices, including webcams, routers, servers, and more, based on specific search criteria. While it primarily focuses on identifying Internet-connected devices, it can also be used to discover subdomains associated with a domain.


Common Use and Features

FOFA.info is commonly used for:

  1. Subdomain Discovery: Users can search for subdomains associated with a domain by specifying the domain name in their search query. This feature helps in identifying all subdomains related to a particular domain, which can be useful for reconnaissance and security assessments.

  2. Device Enumeration: The platform enables users to search for specific types of devices or services based on criteria such as IP address ranges, port numbers, server headers, and more. This allows security professionals and researchers to identify exposed devices and potential security vulnerabilities.

  3. Vulnerability Assessment: By identifying Internet-connected devices and services, FOFA.info can aid in vulnerability assessment and penetration testing by highlighting potential attack surfaces and weak points in an organization's infrastructure.

Usage Example:

To search for subdomains associated with a domain using FOFA.info, users typically input a query similar to the following:

domain="example.com"

This query instructs FOFA.info to retrieve subdomains associated with the specified domain (e.g., example.com).


More Information

For more information about FOFA.info, including additional search capabilities and documentation, visit the official website: FOFA.info (opens in a new tab)

Please note that FOFA.info is a public platform, but access to certain advanced search features and data may require registration or subscription.