-
Task from https://github.com/OWASP/ASVS/issues/978#issuecomment-835728210, pointed out by @timhemel
Define for ASVS what is meant by "Host", "Domain" or "Host or Domain" and check that entire …
-
**Nuclei version**
```
latest
```
**Describe the bug**
The template azure-takeover-detection.yaml is located under the DNS directory, but IMO it should be located under the takeovers director…
-
Can you please add this tool, https://github.com/LukaSikic/subzy to check for subdomain takeovers?
-
Hello, we received a security report that the domains within https://github.com/kubernetes/kops/blob/master/docs/getting_started/aws.md can be registered which could lead to someone performing various…
-
**Nuclei version**
```
2.3.6
```
**Nuclei template version**
```
v8.2.4
```
**Template ID**
wufoo-takeover
**Commands to Reproduce**
```
I couldn't find any reference to the …
-
I believe the TXT record is only needed for verification and can be deleted once verification is complete. If that is accurate, it should be added to the article.
Thanks!
---
#### Document…
-
After installation I have just run the command like
Garud -d target.com -f target
Error output
[FTL] Could not create output file 'vulnerabilities/target-takeovers.txt': open vulnerabilities/…
-
Folks generally use `document.domain` to _relax_ the same-origin policy, allowing multiple documents in the same eTLD+1 to reach into each other's DOM and muck around. It might be reasonable to use th…
-
The idea here is that instead of just passing a long list of subdomains that may or may not resolve we should instead take input from tools like massdns or zdns. These tools are meant for the resolvin…
-
**Nuclei version**
```
2.2.1-dev
```
**Nuclei template version**
```
latest git commit
```
**Describe the bug**
The following files are improperly marked as executable:
```
root@b…