-
Hey Team,
I'm a Security Researcher & a bug hunter,
Subdomain Takeover - DNS Misconfiguration
Here is a bug I have found that one of your domains is vulnerable to subdomain takeover which means…
-
## Uptimerobot.com
## There is no additional verification for add custom domain. just add cname record and pointing to stats.uptimerobot.com
## https://exploit.linuxsec.org/uptimerobot-com-custo…
-
## Service name
Worksites - https://worksites.net
## Proof
- Vulnerable Error Message
![poc](https://user-images.githubusercontent.com/43918685/79306162-0984b200-7ef5-11ea-83a9-8aeeb2d03d95.png…
-
Bit of a curve ball... We check for subdomain takeover attacks, which can be useful in CSP bypasses etc.
https://github.com/punk-security/dnsReaper
-
I have a subdomain whose CNAME Is pointing to something.mktoweb.com, the A record redirects me appname.marketo.com/login page. Is it possible to takeover such a subdomain. I dont find any way to creat…
-
## Service name
ngrok
this already mentioned in https://github.com/EdOverflow/can-i-take-over-xyz/issues/85
but few steps are missing there. and that won't work.
when you run `./ngrok http 80 -sub…
-
I have found a program where website its response is 404 and Its Cname is pointing to uservoice.com.
I didn't find any registration portal for that site.
```
;; ANSWER SECTION:
mywebsite.com. …
-
Is subdomains hosted at discourse is vulnerable to takeover or not?
-
## Subdomain Takeover through readme.io
readme.io is another service which's subdomains can be taken over if it says **"Project doesnt exist... yet!"**. There's a sign-up button and if someone does,…
-
## Service name
Airee.ru (Russian service) for accelerate and protect website
## Proof
1) Check subdomain
![image](https://user-images.githubusercontent.com/10026540/60174891-c3058000-981a-11e9-…