kotrouss
commented
1 year ago to identify if it's vulnerable:
http://example.useresponse.com/ will redirect to https://useresponse.com/404. which means it's no longer used or never has been claimed
Open kotrouss opened 1 year ago
kotrouss
commented
1 year ago to identify if it's vulnerable:
http://example.useresponse.com/ will redirect to https://useresponse.com/404. which means it's no longer used or never has been claimed
Steps to Reproduce:
1- Identify subdomain.example.com as a potential candidate for subdomain takeover. 2- Perform a CNAME lookup for subdomain.example.com. 3- Identify the CNAME record points to example.useresponse.com. 3- Register at useresponse.com with a professional email address. 4- During registration, choose example.useresponse.com as the address bar. 5- Navigate to subdomain.example.com.
6-the subdomain has been taken over.