gsan
« Back to VersTracker
Description:
Extract subdomains from SSL certificates in HTTPS sites
Type: Formula  |  Latest Version: 5.0.0@0  |  Tracked Since: Dec 24, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security reconnaissance subdomains pentesting ssl
Install: brew install gsan
About:
GSAN (Get Subdomain Alt Name) is a command-line utility designed to extract subdomains from SSL certificates of HTTPS-enabled websites. It automates the process of querying certificate transparency logs and parsing Subject Alternative Name fields to discover hidden subdomains. This tool provides security professionals and developers with a streamlined method for reconnaissance and attack surface mapping.
Key Features:
  • Extracts subdomains from SSL/TLS certificates
  • Queries Certificate Transparency (CT) logs automatically
  • Fast and lightweight command-line interface
  • Supports bulk processing of target lists
Use Cases:
  • Penetration testing and bug bounty reconnaissance
  • Mapping an organization's external attack surface
  • Identifying forgotten or shadow IT infrastructure
Alternatives:
  • subfinder – subfinder is a broader subdomain discovery tool that uses multiple passive sources, whereas GSAN focuses specifically on SSL certificate analysis.
  • certspotter – certspotter is a dedicated CT log monitoring service; GSAN provides a CLI wrapper for similar certificate-based enumeration.
Version History
Detected Version Rev Change Commit
Dec 24, 2025 2:25am 5.0.0 0 VERSION_BUMP 6693c1e5
Oct 18, 2025 4:13pm 0 VERSION_BUMP e8c1d819
Dec 16, 2024 9:43pm 0 VERSION_BUMP 25cfb6c5
« Back to VersTracker  |  Browse Packages  |  About