I am thrilled to announce the launch of my first Open-source tool

CRT-SF: crt.sh Subdomain Finder

  • CRT-SF is a cutting-edge bash script that leverages the power of Certificate Transparency logs (powered by crt.sh) to uncover subdomains.
  • This simple bash tool is designed to significantly enhance your bug bounty hunting experience.
   Usage: ./crtsf [-d domain] [-f file] [-o output_dir]
     -d     Domain to search
     -f     File containing list of domains
     -o     Output directory (default: $DEFAULT_OUTPUT_DIR)
     -s     Output to stdout instead of a file
     -h     Display this help message

Key Features

  • Efficient Subdomain Discovery: Quickly find subdomains related to your target domain using crt.sh logs.
  • Easy to Use: Designed with simplicity in mind, CRT-SF can be seamlessly integrated into your existing workflow.
  • Enhanced Bug Hunting: Uncover hidden subdomains that could be potential gateways to vulnerabilities.


  • Save Time: Spend less time finding subdomains and more time exploring them.
  • Stay Ahead: Keep ahead in the bug bounty race by discovering what others might miss.
  • Open Source: CRT-SF is open for community contributions, ensuring continuous improvement and updates.


Happy Bug Hunting!