-
~/LazyRecon$ ./LazyRecon.sh target.com
██╗ █████╗ ███████╗██╗ ██╗██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗
██║ ██╔══██╗╚══███╔╝╚██╗ ██╔╝██╔══██╗██╔════╝██╔════╝██╔═══██╗████╗ ██║
██…
-
root@kali:~/LazyRecon# ./LazyRecon.sh twilio.com
██╗ █████╗ ███████╗██╗ ██╗██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗
██║ ██╔══██╗╚══███╔╝╚██╗ ██╔╝██╔══██╗██╔════╝██╔════╝██╔═══██╗████…
-
The topic is discussed before - https://github.com/OWASP/ASVS/issues/966, but as there is offtopic noise, I open a new issue.
Problem to solve: if the browser makes the first HTTP request to th…
-
Hello,
First of all, thank you for the awesome tool.
1) Wildcard subdomain that resolves to CNAME with status `NXDOMAIN` are not filtered. (have not checked if NOERROR with CNAME are filtered or…
-
## Service name
ngrok
this already mentioned in https://github.com/EdOverflow/can-i-take-over-xyz/issues/85
but few steps are missing there. and that won't work.
when you run `./ngrok http 80 -sub…
-
hello. I know it is possible for the aws elasticbeanstalk service to have a takeover if the conditions are met. For this, the region named elasticbeanstalk should be used. but if there is "env" in the…
-
Hi Bunny Security Team,
I just want to reach out to you. I'm trying to submit this report weather your interested on it.
Thanks for taking a look.
Recently, i just found some of your Domain (…
-
Thanks for sharing this awesome tool.
I believe that EasyRedir is no longer vulnerable for subdomain takeovers. They now require hostname verification on the source hostname. See https://help.easy…
-
## Report
:warning: reported via `security@weave.works` on **January 18**...
**Describe**
```
High-Impact Subdomain Takeover
FQDN: wkp.weave.works
IP address: 13.49.241.153
Overview o…
-
This page and logic seems to help users discover Subdomain Takeover using CNAME records. However, it's still possible to take over a subdomain with A Records as well. One can provision a public IP add…