ethrx
commented
3 years ago Is there a cname entry for this?
Closed rzhade3 closed 2 years ago
ethrx
commented
3 years ago Is there a cname entry for this?
rzhade3
commented
3 years ago Is there a cname entry for this?
I've been running it without a CNAME, but this researcher: https://github.com/EdOverflow/can-i-take-over-xyz/issues/183#issuecomment-751317332 found that there are edge cases in which this fingerprint may have false positives. As such, maybe this fingerprint isn't ready to be merged in.
This PR adds a fingerprint for domains hosted on Vercel. As pointed out by this submitter: https://github.com/EdOverflow/can-i-take-over-xyz/issues/183, Vercel is also vulnerable to subdomain takeover 😄
I've stood up a domain at
dashdot.appto verify that this fingerprint works.