Closed anshumanbh closed 6 years ago
That was the old behavior (before https://github.com/anshumanbh/tko-subs/pull/31) which caused a ton of false positive to be reported, where a target domain was pointing to a subdomain of a registered domain, which means it cannot be taken over. Now, tko-subs reports dead DNS records in only two cases:
So to find cases like the one mentioned in the blog post, you need to add the provider (in this case trafficmanager.net) to providers-data.csv, and tko-subs will report vulnerable hosts pointing to this provider with the message Can't CURL it but dig shows a dead DNS record
Can tko-subs find cases like this one - https://0xpatrik.com/subdomain-takeover-starbucks-ii/?