Add all subdomains to scope | Burp Suite

If your target is only www.google.com then the below setting will be fine

The target scope is www.google.com

But if you wish to attack all the subdomains of google.com then you need to check on “Use advance scope control” and click on the Add button.

Advance scope control

Burp’s scope rules use regular expressions in the host field, so you need to create a rule that matches something like:

.*\.google\.com$

and this shall match all subdomains of google.com

Put the regex in the “Host or IP range” field and click on OK

Now go to Proxy > HTTP History and check on “Show only in scope item” under the Filter option

Filter the traffic

Hurray! 😍Now you can view all the subdomains of google.com in the HTTP history tab