DNS returns a CNAME
Website returns a given string
A lot of these responses also return a 404 status code, so we should generically test for status code 404. This will likely return a lot of false positives, but we now have an UNLIKELY enum so we can turn this signature off easily.
Running this against domains could give us a good feed of new ideas and signatures 😍
A lot of signatures follow the same template:
A lot of these responses also return a 404 status code, so we should generically test for status code 404. This will likely return a lot of false positives, but we now have an UNLIKELY enum so we can turn this signature off easily.
Running this against domains could give us a good feed of new ideas and signatures 😍