Open ph4nt0m-py opened 2 years ago
1:
2:
3:
4:
I also added a template to find this subdomain takeover using nuclei.
Okay nice.
I think gitbook is no more vulnerable.
Not vulnerable anymore. The CNAME is now randomized:
Service name : Gitbook
Proof:
1:![Screenshot (14)_LI](https://user-images.githubusercontent.com/50272190/153820545-b3f0936c-0267-4d6d-83ba-b872ef45f1d0.jpg)
2:![Screenshot (17)_LI](https://user-images.githubusercontent.com/50272190/153820604-34293c4d-affa-429a-ad00-63ffe679ed03.jpg)
3:![Screenshot (18)](https://user-images.githubusercontent.com/50272190/153820648-33565f80-6196-4c72-b81f-d087b49dfbb6.png)
4:![Screenshot (19)_LI](https://user-images.githubusercontent.com/50272190/153820686-3965dd9d-003d-40d2-bda8-1e041c071e31.jpg)
Documentation : https://docs.gitbook.com/hosting/custom-domains/dns-configuration