FIERCE

Scanner

Fierce is a semi-lightweight scanner that helps locate non-contiguous IP space and hostnames against specified domains. It’s really meant as a pre-cursor to nmap, unicornscan, nessus, nikto, etc, since all of those require that you already know what IP space you are looking for. This does not perform exploitation and does not scan the whole internet indiscriminately. It is meant specifically to locate likely targets both inside and outside a corporate network.

Because it uses DNS primarily you will often find mis-configured networks that leak internal address space. That’s especially useful in targeted malware. Originally written by RSnake along with others at http://ha.ckers.org/. This is simply a conversion to Python 3 to simplify and modernize the codebase.

DOWNLOADS

No Official Website

SYSTEM REQUIREMENTS

RAM : Minimal, as it is a lightweight tool.

Storage : Approximately 245 KB

OS : Works on Linux and can be installed on other platforms using Python.

Architecture : Compatible with all architectures

Available On : Primarily for PCs, not designed for mobile devices.


ADDITIONAL INFORMATION

Published By

Originally written by RSnake and later modernized by contributors.

Release Date

Around 2013

Approximate Size

76.1 KB for Archives

Publisher Info

Initially hosted on ha.ckers.org, now maintained on GitHub.

Supported Languages

English

Last Update

November 26, 2024

Programming Language

Python

Operating System

Cross-platform

License

GPL-3.0

  1. Saving : Unfortunately, there is no inbuilt function available for storing the results of the Fierce scan on the target at your disk. Although no saving function is available, so there is no feature to save the output in various formats. But you can redirect the output of the scan into any text file with some Linux skills and terminal commands.
  2. Range Scan : One of the amazing functions or features of the Fierce tool is the Range scan. You can scan the range of IP address with a single click. The range is the option that is mandatory while performing a range scan. You need to specify the IP address; like ( 192.168.28.4/24 ).
  3. Dictionary file : A brute-forcing attack or method approach is used for enumeration or detection of subdomains associated with the target domain. The inbuilt wordlist file is activated when the installation of the Fierce tool is done on the system. But Fierce tool allows users to use custom subdomains wordlists with a massive number of possible subdomains words. –subdomain-file is the option for using the custom wordlists for brute-forcing.

  • Purpose : Used for DNS reconnaissance to locate hidden subdomains and non-contiguous IP spaces.
  • Efficiency : Relies on DNS queries instead of brute-force scanning, making it fast and stealthy.
  • Usage in Penetration Testing : Helps security professionals discover misconfigured networks before running deeper scans.
  • Common Features : Performs domain lookups, wildcard queries, reverse lookups, and brute-force attacks on DNS servers.
  • Integration : Often used before scanning tools like Nmap, Nessus, or Nikto for target enumeration.
  • Open Source : Available as a free tool that can be used on Linux-based penetration testing systems.

  • Locating non-contiguous IP space : Fierce can help identify IP addresses that are not sequential within a target network. This information can be useful for vulnerability assessments and penetration testing.
  • Finding hostnames : Fierce can discover hostnames associated with the target domain, which can be useful for mapping out a network or identifying potential vulnerabilities.
  • Zone transfers : Fierce supports zone transfers, which can provide extensive information about the target domain and subdomains. However, zone transfers are rare these days due to security concerns.
  • Scanning contiguous IP space : Fierce can also scan continuous IP space if it is assigned within the target network.

  1. Run a default scan against a domain : fierce --domain example.com
  2. Attempt HTTP connection on discovered domains : fierce --domain example.com --connect
  3. Scan an internal IP range using CIDR notation : fierce --range 192.168.1.0/24
  4. Perform brute-force subdomain scanning : fierce --domain example.com --subdomains admin,mail,www
  5. Check for wildcard DNS : fierce --domain example.com --wide
  6. Perform zone transfer attack : fierce --domain example.com --dns-servers ns1.example.com,ns2.example.com

  • python3
  • python3-dnspython

Terminal Installation Commands ...

$ python3

$ cd Desktop

$ mkdir Fierce

$ cd Fierce

$ git clone https://github.com/mschwager/fierce.git

$ Download the required packages for running the tool : pip3 install -r requirements.txt

GUI Installation Steps ...
Linux
  1. Update the package database : sudo apt-get update
  2. Install Fierce using apt-get : sudo apt-get -y install fierce
  3. Alternatively, you can use apt or aptitude for installation.
Windows
  1. Install Python if not already installed.
  2. Use pip to install Fierce : python -m pip install fierce
  3. Alternatively, clone the repository :

    4. $ git clone https://github.com/mschwager/fierce.git

    $ cd fierce

    $ python -m pip install dnspython==1.16.0

    $ python fierce/fierce.py -h
MacOS
  1. Install Homebrew if not already installed : /bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"
  2. Use Homebrew to install Fierce : brew install fierce

Terminal Uninstallation Commands ...

$ sudo apt remove fierce

$ sudo apt autoclean && apt autoremove


GUI Uninstallation Steps ...
Linux
  1. Remove the Fierce package : sudo apt-get remove fierce
  2. To remove Fierce along with its dependencies : sudo apt-get -y autoremove fierce
  3. For a complete removal, including configurations and data : sudo apt-get -y purge fierce
  4. To remove configurations, data, and dependencies : sudo apt-get -y autoremove --purge fierce
Windows
  1. Open the Control Panel or Settings.
  2. Locate Fierce in the list of installed programs.
  3. Click "Uninstall" and follow the prompts.
MacOS
  1. Drag the Fierce application to the Trash.
  2. Empty the Trash to remove the app.
  3. For a thorough cleanup, manually delete associated files from the Library folder : ~/Library
  4. Alternatively, use third-party tools like AppCleaner for complete removal.

Copyright © 2025 HACKERSPOT

All original content, including tools, software, and other information, is protected by copyright and remains the property of its respective owners.

Subscribe for more Information
HACKERSPOT

HackerSpot is an informational platform that offers resources such as tools, software, courses, internships, and various other materials aimed at supporting individuals passionate about CyberSecurity and IT.

About Us
Docs / Links

Documentation

Tools

Softwares

Operating Systems

Learning

Courses

Internships

Virtual Labs

Colleges

Youtube Channels

Resources

Devices & Hardware

Browsers

Cyber Threat Maps

Other Resources

Contacts

Bapatla, Andhrapradesh, India 237101

bablunannam@gmail.com

+91 7995819235