This script monitors a list of domains for newly discovered subdomains via crt.sh. For each new subdomain found, it checks its availability, resolves the IP, detects known CVEs using Shodan and Vulners APIs, and attempts to access sensitive files. All findings are reported via Telegram bot.
- Discover new subdomains using
crt.sh - Check if subdomains are recently created
- Fetch web title and HTTP status
- Resolve IP address
- Fetch CVE vulnerabilities using:
- Attempt to detect and send sensitive files:
.env,.git/config,config.php,backup.zip,database.sql
- Notify all results via Telegram
git clone https://github.com/FebriHp/NewSubAlert.git
cd NewSubAlertEdit the script or use a .env management system:
TELEGRAM_BOT_TOKEN = "YOUR_TELEGRAM_TOKEN"
TELEGRAM_CHAT_ID = "YOUR_CHAT_ID"
SHODAN_API_KEY = "YOUR_SHODAN_KEY"
VULNERS_API_KEY = "YOUR_VULNERS_KEY"
DOMAIN_LIST = ["example.com", "test.com"]docker build -t submonitor .docker run --rm submonitorDont forget to click Start or run /start on your telegram bot, to receive massage or notifications
Suggestions, contributions, and improvements are welcome!