[SignatureBot] Add or update signature nucleitemplates_shopify-takeover.yml

[liquidsec]

Add or update signature: nucleitemplates_shopify-takeover.yml

This PR adds or updates the follow signature:

identifiers:
  cnames:
  - type: word
    value: myshopify.com
  - type: word
    value: shopify.com
  ips: []
  nameservers: []
  not_cnames: []
matcher_rule:
  matchers:
  - dsl:
    - Host != ip
    type: dsl
  - condition: or
    part: body
    type: word
    words:
    - To finish setting up your new web address, go to your domain settings, click
      "Connect existing domain"
    - Sorry, this shop is currently unavailable.
  - condition: and
    part: body
    type: word
    words:
    - shop-not-found
  - condition: and
    dsl:
    - '!contains(host,"myshopify.com")'
    - '!contains(host,"shopify.com")'
    type: dsl
  matchers-condition: and
mode: http
service_name: shopify takeover detection
source: nucleitemplates

[liquidsec]

Test results:

Signature Pass: false :x: Error: No CNAMES passed random subdomain matcher validation

[liquidsec]

Test results:

Signature Pass: false :x:

Match Table:

Domain	Match
myshopify.com	false
shopify.com	false

Error: **No CNAMES passed random subdomain matcher validation**

[liquidsec]

possibly not vulnerable anymore? needs research.

[liquidsec]

Test results:

Signature Pass: false :x:

Match Table:

Domain	Match
myshopify.com	false
shopify.com	false

Error: **No CNAMES passed random subdomain matcher validation**

[liquidsec]

tests are failing. Looks like cloudflare is doing some hostname checking or something here, making this impossible now.

I'm not putting the block on here, just in case nuclei templates get updated i'd like the PR re-opened.