Hakluke’s Guide to Amass — How to Use Amass More Effectively for Bug Bounties

ASCII art is life

Amass has a lot of features. It’s a bit of a weird tool because despite being synonymous with bug bounty recon, and despite being extremely well known, most people don’t know how to use it to it’s full advantage. Most people that I see using Amass are just doing this:

amass enum -d clicktheclapbutton50timesplz.com




Pentester | Hubby | Musician

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How to get started with FreeRTOS and ESP8266

Orchestrate Your Go Routines Using Channels

Words With Casino


Auto mount service account token to virt-launcher pod in OpenShift Container Native Virtualization

Physics in Unity

Foundations: Your First Repository

Achieving High Performance with PostgreSQL and Redis

1365. How Many Numbers Are Smaller Than the Current Number

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Luke Stephens (@hakluke)

Luke Stephens (@hakluke)

Pentester | Hubby | Musician

More from Medium

Writeup: CSRF vulnerability with no defenses @ Portswigger Academy

Parameter Pollution - Zero Day

How I approached Dependency Confusion!

[CTF] 1337up CTF - Blink’s Secret