-
Ordinary "server and subserver owners", and their users, should only see their own files/dirs, plus the most minimal possible essential system files/dirs (`/var/log/`...), symlinked by default thru th…
-
## Blogger
## Proof
## Documentation
Dangling (sub)domains that point to ghs.google.com usually point to a Blogger instance. However, this subdomain cannot be taken over because Blogger r…
-
So, according to this page:
> immediate reuse of the corresponding DNS is forbidden except for subscriptions belonging to the tenant of the subscription that originally owned the DNS. Thus, the cus…
-
Hola TAG!
I'm requesting a TAG review of scope-extensions.
This document describes a new scope_extensions manifest member that enables web apps to extend their [scope](https://www.w3.org/TR/appm…
-
It seems like baddns is raising a `Dangling NS Records (NS records without SOA)` for certain unresolved dns names:
```
[FINDING] {"description": "Dangling NS Records (NS records with…
-
### Service(s)
infra.ci.jenkins.io, Docker Hub, GitHub
### Summary
Original request I never finished - https://github.com/jenkins-infra/helpdesk/issues/2684#issuecomment-1565634020
I recreated the…
-
This page and logic seems to help users discover Subdomain Takeover using CNAME records. However, it's still possible to take over a subdomain with A Records as well. One can provision a public IP add…
-
Hello,
On DNS record for domain validation, can you precise the purpose of the 2 record, the A and the TXT ?
Here they are presented as a requirement :
![image](https://github.com/MicrosoftDocs…
-
### Template Information:
Subdomain takeover template: https://github.com/projectdiscovery/nuclei-templates/blob/8b2bc8ab8ef801d4342bb4ec4fedb5460296da29/subdomain-takeover/detect-all-takeovers.yam…
-
The attacker here used an un-ethical way to exploit Unbounce which is resolved now as far as I believe.
https://github.com/EdOverflow/can-i-take-over-xyz#unbounce