BurpSuite Add all subdomains to scope

Dr. Gupta
1 min readFeb 1, 2023

--

BurpSuite add scope

If the target is TARGET.COM then do the following to update all subdomains to scope:

  1. Go to Target and select scope.
  2. click on “use advanced scope control”
  3. click on add and then in Host or IP range field,
  4. BurpSuite uses regular expressions in the host field, so the regex will be:

.*\.target\.com$

this will match all subdomains

Another way to add Target.com with all subdomains is:

  1. Go to Target and select scope.
  2. click on “use advanced scope control”
  3. then Go to sitemap
  • righ click on domain name and select “add to scope” press No so that it will keep monitoring all out of scope data as well.
  • No go to scope and click on “Host/IP Range” and click edit
  • Replace “www\” with “.+”
  • it should look like this now: ^.+target\com$
  • now press ok, above regex means anything . target.com which will include all subdomains.

if the website has multipole domain names like target.com , target.org, target.us, target.in etc

  1. Replace .com with ..* :

.*\.target\..*$

  1. Now Go to proxy > HTTP History and check on ‘show only in scope item’ under filter option.

--

--

Dr. Gupta
Dr. Gupta

Written by Dr. Gupta

ll Insomniac Doctor loves Terminal || #Security_Researcher #DayTrader || Learn and Earn || #Web3_Doctor || Rookie Smart Contract Dev & Security Researcher ||

No responses yet