subowner
SubOwner - A Simple tool check for subdomain takeovers. This tool is designed to check for subdomain takeovers by resolving the CNAME records and verifying them against known vulnerable services. If a subdomain is found to be vulnerable, it saves the vulnerable URL in a file.
Disclaimer
[!WARNING]
This tool is intended only for educational purposes and for testing in authorized environments. https://twitter.com/nav1n0x/ and https://github.com/ifconfig-me take no responsibility for the misuse of this code. Use it at your own risk. Do not attack a target you don't have permission to engage with. This tool uses the publicly released payloads and methods.
Features
- Supports multiple services for takeover (AWS S3, GitHub Pages, Heroku, Shopify, etc.).
- Performs CNAME resolution and service-specific checks.
- Outputs vulnerable subdomains to a file.
- use the liste without schema (no http:// or https://)
Upadte - 17/10/2024
Modifications:
- Updated the script with ThreadPoolExecutor to process subdomains concurrently.
- The
-tor--threadsargument added to specify how many threads should be used. - Each subdomain is processed in a separate thread.
This script will now check subdomains faster by utilizing multiple threads. You can adjust the number of threads via the -t argument.