GitHub topics: subdomain-takeover

Repositories

Van-1337/AutoEASM

Tool for automated scanning of the common vulnerabilities of company subdomains

Language: Python - Size: 2.88 MB - Last synced at: about 19 hours ago - Pushed at: about 21 hours ago - Stars: 7 - Forks: 1

Santz777/Sub_Recon

Gather SubDomains Reconnaissance Tools Together to Get the Best Result Possible

Size: 1.95 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 1 - Forks: 0

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

Language: Go - Size: 39.4 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 24,665 - Forks: 2,875

m8sec/subscraper

Subdomain and target enumeration tool built for offensive security testing

Language: Python - Size: 102 KB - Last synced at: 3 days ago - Pushed at: about 1 year ago - Stars: 896 - Forks: 100

PentestPad/subzy

Subdomain takeover vulnerability checker

Language: Go - Size: 11.8 MB - Last synced at: 6 days ago - Pushed at: 12 months ago - Stars: 1,338 - Forks: 191

hash3liZer/Subrake

🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).

Language: CSS - Size: 959 KB - Last synced at: 10 days ago - Pushed at: 11 months ago - Stars: 299 - Forks: 64

blark/aiodnsbrute

Python 3.5+ DNS asynchronous brute force utility

Language: Python - Size: 20.3 MB - Last synced at: 4 days ago - Pushed at: almost 2 years ago - Stars: 658 - Forks: 117

mdeous/dnscheck

Subdomain takeover assessment tool.

Language: Go - Size: 250 KB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 6 - Forks: 0

jakejarvis/bounty-domains

List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)

Size: 10.7 KB - Last synced at: 10 days ago - Pushed at: over 4 years ago - Stars: 75 - Forks: 28

haccer/subjack 📦

Subdomain Takeover tool written in Go

Language: Go - Size: 155 KB - Last synced at: 25 days ago - Pushed at: about 2 years ago - Stars: 1,991 - Forks: 352

zyfoxx/subhunter

Passive Subdomain Enumeration Tool

Language: Go - Size: 198 KB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 5 - Forks: 0

ZyFoxX/Subtaver

Subdomain Takeover & Vulnerability Scanner

Language: Go - Size: 532 KB - Last synced at: 27 days ago - Pushed at: 27 days ago - Stars: 9 - Forks: 0

Ice3man543/SubOver

A Powerful Subdomain Takeover Tool

Language: Go - Size: 158 KB - Last synced at: 25 days ago - Pushed at: almost 2 years ago - Stars: 955 - Forks: 205

r3curs1v3-pr0xy/sub404 📦

A python tool to check subdomain takeover vulnerability

Language: Python - Size: 421 KB - Last synced at: 6 days ago - Pushed at: over 2 years ago - Stars: 334 - Forks: 60

TheBinitGhimire/NtHiM

Now, the Host is Mine! - Super Fast Sub-domain Takeover Detection!

Language: Rust - Size: 13.1 MB - Last synced at: 24 days ago - Pushed at: over 2 years ago - Stars: 363 - Forks: 63

anirudhbiyani/findmytakeover

find dangling domains in a multi cloud environment

Language: Python - Size: 783 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 142 - Forks: 11

dipeshkumarsahani/subdover

Professional Subdomain Takeover Scanner by Dipesh Kumar Sahani

Language: Python - Size: 0 Bytes - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

PushpenderIndia/subdover

Subdover is a MultiThreaded Subdomain Takeover Vulnerability Scanner Written In Python3

Language: Python - Size: 14 MB - Last synced at: about 1 month ago - Pushed at: almost 2 years ago - Stars: 106 - Forks: 34

Stratus-Security/Subdominator

The Internets #1 Subdomain Takeover Tool

Language: C# - Size: 263 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 256 - Forks: 21

0xcrypto/takeover

A script to test for subdomain takeovers from a list of domains

Language: Python - Size: 38.1 KB - Last synced at: 1 day ago - Pushed at: over 2 years ago - Stars: 12 - Forks: 2

mathis2001/SubPwnable 📦

Are your (sub)domains pwnable ? SubPwnable is a simple Python tool designed to helps you answer this question.

Language: Python - Size: 16.6 KB - Last synced at: 3 months ago - Pushed at: about 3 years ago - Stars: 6 - Forks: 1

h0tak88r/subOv88r

A simple Go tool for analyzing subdomains for subdomain takeover vulnerability, especially in Azure and AWS services.

Language: Go - Size: 19.5 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 7 - Forks: 2

R0X4R/Garud

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Language: Shell - Size: 3.36 MB - Last synced at: 4 months ago - Pushed at: about 2 years ago - Stars: 787 - Forks: 176

shmilylty/OneForAll

OneForAll是一款功能强大的子域收集工具

Language: Python - Size: 103 MB - Last synced at: 4 months ago - Pushed at: 11 months ago - Stars: 8,937 - Forks: 1,358

CuriosidadesDeHackers/Subdomain-Takeover-Scanner

Subdomain Takeover Scanner es una herramienta de línea de comandos escrita en Python diseñada para identificar y verificar posibles vulnerabilidades de subdomain takeover en un dominio específico

Language: Python - Size: 53.7 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 1

gwen001/dnspy

Find subdomains and takeovers.

Language: Python - Size: 29.3 MB - Last synced at: about 2 months ago - Pushed at: almost 3 years ago - Stars: 85 - Forks: 22

topscoder/subgomain

A high-performance tool for identifying domain takeovers with support for custom fingerprints and resolver lists.

Language: Go - Size: 208 KB - Last synced at: 2 months ago - Pushed at: 5 months ago - Stars: 7 - Forks: 0

taygun08/spoof_checker

Command-line tool to detect email spoofing vulnerabilities by analyzing SPF and DMARC DNS records. Supports single and bulk domain checks with multiple output formats.

Language: Go - Size: 4.89 MB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 19 - Forks: 4

umutcamliyurt/Subhunter

A fast subdomain takeover tool

Language: Go - Size: 20.5 KB - Last synced at: 4 months ago - Pushed at: almost 2 years ago - Stars: 80 - Forks: 23

izzetemredemir/subdomain-takeover

Subdomain Takeover Automation

Language: Python - Size: 114 KB - Last synced at: 8 days ago - Pushed at: over 4 years ago - Stars: 9 - Forks: 0

dextryayers/deepscan

Penetration tools to find subdomains of a website quickly and simply, can also scan ports and provide information about subdomains.

Language: Python - Size: 0 Bytes - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0

JannisKirschner/Horn3t

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Language: Python - Size: 14.1 MB - Last synced at: 3 months ago - Pushed at: over 6 years ago - Stars: 139 - Forks: 30

SilverPoision/Rock-ON

Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.

Language: Shell - Size: 541 KB - Last synced at: 5 months ago - Pushed at: almost 6 years ago - Stars: 294 - Forks: 69

martinvw/subdomain-takeover-tools

Some helper tools to validate subdomain takeovers

Language: Python - Size: 76.2 KB - Last synced at: 7 days ago - Pushed at: 8 months ago - Stars: 8 - Forks: 4

indianajson/can-i-take-over-dns

"Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.

Size: 2.18 MB - Last synced at: 5 months ago - Pushed at: 6 months ago - Stars: 1,021 - Forks: 95

Vulnpire/Reclaim

Identify potential subdomain takeover vulnerabilities by checking CNAME records and verifying exploitability through HTTP responses

Language: Go - Size: 20.5 KB - Last synced at: 5 months ago - Pushed at: 8 months ago - Stars: 4 - Forks: 0

hahwul/recon-raven

Reconnaissance tool of Penetration test & Bug Bounty

Language: Ruby - Size: 61.5 KB - Last synced at: 4 months ago - Pushed at: about 7 years ago - Stars: 25 - Forks: 8

isotaka134/Subdomain-Takeover-XSS-Scanner

This Metasploit auxiliary module scans a list of subdomains to check for active hosts, takeover vulnerabilities, and potential XSS flaws.

Language: Ruby - Size: 8.79 KB - Last synced at: 5 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

Macmod/STARS

A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.

Language: Python - Size: 198 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 49 - Forks: 5

tegal1337/subt

SubT is a tool to check if a subdomain is vulnerable to subdomain takeover. It uses `subfinder` to search for subdomains, `dig` to check CNAME, and `curl` to check status code.

Language: Python - Size: 99.6 KB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 7 - Forks: 5

edoardottt/takeover Fork of jaikishantulswani/takeover

Sub-Domain TakeOver Vulnerability Scanner (edoardottt fork)

Language: Python - Size: 426 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 48 - Forks: 16

0xBl4nk/DnScan

A multithread dns scanner that shows subdomains of a host, possible subdomains vulnerable to "Subdomain Takeover" and DNS records for each subdomain.

Language: Python - Size: 2.33 MB - Last synced at: 7 months ago - Pushed at: over 1 year ago - Stars: 10 - Forks: 2

scanfactory/sdto

Subdomain takeover finder CLI tool and Python library

Language: Python - Size: 88.9 KB - Last synced at: 20 days ago - Pushed at: 9 months ago - Stars: 9 - Forks: 2

cyb3rzest/vasuki

An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.

Language: Shell - Size: 432 KB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 14 - Forks: 6

mzfr/takeover

A tool for testing subdomain takeover possibilities at a mass scale.

Language: Go - Size: 41 KB - Last synced at: 5 months ago - Pushed at: over 4 years ago - Stars: 49 - Forks: 11

al-sultani/CloudSquatting-Catc7er

CloudSquatting Catc7er is a tool designed to detect potential vulnerabilities caused by dangling DNS records

Language: Python - Size: 74.2 KB - Last synced at: 4 months ago - Pushed at: 10 months ago - Stars: 2 - Forks: 1

Anon-Exploiter/Route53-SubdomainsTakeover

A script to fetch all route53 hosted zones, fetch all CNAME DNS records of each zone (domain) then check all the records containing elasticbeanstalk applications; if they're takeoverable and post all that on Slack!

Language: Python - Size: 52.7 KB - Last synced at: about 1 month ago - Pushed at: almost 4 years ago - Stars: 8 - Forks: 2

HwMex0/S3TakeOver

S3TakeOver

Language: Python - Size: 34.2 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 6 - Forks: 2

mrlew1s/SubdomainTakeover

Small python or powershell script to look for potential subdomain takeover vulnerabilities via vulnerable Alias.

Language: Python - Size: 175 KB - Last synced at: 10 months ago - Pushed at: about 4 years ago - Stars: 8 - Forks: 2

HaxorSecInfec/Mass-Takeover-Github

Mass Auto Takeover Github

Language: Shell - Size: 0 Bytes - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

thenurhabib/subnum

Crawl all subdomains and check for subdomain takeover vulnerability.

Language: Python - Size: 230 KB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 7 - Forks: 1

zerbaliy3v/custom-nuclei-templates

my nuclei templates #new

Size: 64.5 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 7 - Forks: 0

basedygt/SubWarden

Subdomain Takeover vulnerability checker written in python

Language: Python - Size: 53.7 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 1 - Forks: 0

1hehaq/Oros

Takedown your next target subdomain using Oros 🐺

Language: Python - Size: 23.4 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

0xPrateek/Stake

S-ubdomain TAKE-over

Language: Python - Size: 40 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 6 - Forks: 3

Subhashis360/subsonic

subsonic - Free Fasstest subdomain finder online its a Enumerating tool used for Active Subdomain find

Language: Python - Size: 37.1 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

Pentester-Nepal/Subdomain-Takeover-Signatures

Signatures for different platforms to verify Sub-domain Takeover vulnerabilities!

Size: 34.2 KB - Last synced at: over 1 year ago - Pushed at: over 3 years ago - Stars: 8 - Forks: 5

it-jhack/bughunter-debian-setup

Bash script to install essential tools for bughunting

Language: Shell - Size: 46.9 KB - Last synced at: 5 months ago - Pushed at: about 4 years ago - Stars: 2 - Forks: 0

it-jhack/subsort

Subsort removes grep redundancies for subdomains in a list.

Language: Python - Size: 7.81 KB - Last synced at: 6 months ago - Pushed at: over 4 years ago - Stars: 1 - Forks: 0

it-jhack/subtaker

A tool to help find subdomain takeover vulnerabilities

Language: Python - Size: 146 KB - Last synced at: 6 months ago - Pushed at: over 4 years ago - Stars: 0 - Forks: 0

ccwillem/danglingdomains

Tool that can find dangling domains for possible subdomain takeover.

Language: Python - Size: 12.7 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 4 - Forks: 0

InfoSecWarrior/Subdomain-Takeovers

This repository discusses the subdomain takeover vulnerability and lists of services which are vulnerable to it. It also provides information, methodology and resources to perform subdomain takeover attacks.

Language: HTML - Size: 17.6 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 6 - Forks: 7

Asjidkalam/SubRecon

Fast Subdomain Takeover Enumeration tool written in Go

Language: Go - Size: 15.6 KB - Last synced at: almost 2 years ago - Pushed at: over 4 years ago - Stars: 10 - Forks: 1

Prvvv/submapper

A subdomain enumeration tool designed to find WAF's and 404 pages for takeover and enumeration

Language: Python - Size: 122 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

BalaElangovan/screenshot_url

A simple python code that takes screenshots of all the links you provide in a text file.

Language: Python - Size: 1000 Bytes - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0

NeverSpot/sub4bug

This is automation tool which utilize 2 sub -domain finder and then sort out working sub-domain and finally scan for sub-doamin TAKEOVER.

Language: Shell - Size: 16.6 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 7 - Forks: 0

rohitcoder/SubR3con

SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status code for possible subdomain takeover vulnerability. This works great with Subover.go

Language: Python - Size: 751 KB - Last synced at: over 1 year ago - Pushed at: about 6 years ago - Stars: 18 - Forks: 3

thenurhabib/r3con

Multi-functional Web Recon & Vulnerability Scanner Tool

Language: Shell - Size: 1.71 MB - Last synced at: over 2 years ago - Pushed at: over 3 years ago - Stars: 8 - Forks: 6

abd0hrz/pentest-tools

Subdomain Enumeration using Securitytrails API

Language: Python - Size: 175 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 2 - Forks: 2

adiffpirate/subtko24h 📦

A 24/7 subdomain takeovers finder that glues together some open source tools using bash.

Language: Shell - Size: 41.3 MB - Last synced at: over 2 years ago - Pushed at: almost 5 years ago - Stars: 1 - Forks: 0

shubham-rooter/website-status-code

website status code Filter Live Domain & Dead Domain

Language: Shell - Size: 13.7 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 2 - Forks: 0

Fricciolosa-Red-Team/crch

Continuous Recon Continuous Hacking

Language: Go - Size: 69.3 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 6 - Forks: 2

nmmapper/spyse-subdomain-finder

We all know about the famous spyse.com this python3 scripts scrounges subdomains without the api from spyse cybersecurity search engine

Language: Python - Size: 17.6 KB - Last synced at: over 2 years ago - Pushed at: over 5 years ago - Stars: 8 - Forks: 7

offensive-terraform/terraform-aws-s3-subdomain-takeover

Offensive Terraform module which takes over a subdomain which has a CNAME record pointing to non-existing S3 bucket in target's Route53. The module creates a S3 bucket with a name as subdomain in the specific AWS region that CNAME record is pointing to. Also, it uploads a simple web page with "404 Page Not Found" text.

Language: HCL - Size: 723 KB - Last synced at: 3 months ago - Pushed at: almost 5 years ago - Stars: 9 - Forks: 2

Related Keywords

subdomain-takeover 83 bugbounty 32 subdomain-enumeration 27 subdomain-scanner 27 subdomain 26 python 16 bug-bounty 16 python3 14 security 13 pentesting 12 recon 10 hacking 10 reconnaissance 9 takeover-subdomain 9 bugbounty-tool 9 dns 8 takeover 8 penetration-testing 8 security-tools 8 osint 7 enumeration 7 infosec 7 subdomain-finder 7 subdomain-bruteforcing 7 subdomains 7 hacking-tool 6 subdomain-brute 6 golang 6 vulnerability-scanner 6 pentest 5 aws 5 cybersecurity 5 vulnerability-scanners 5 bugbountytips 5 domain-takeover 5 penetration-testing-tools 4 subdomains-enumeration 4 go 3 subdomain-takeovers 3 bug 3 bug-bounty-tools 3 pentest-tool 3 bash 3 subdomains-discovery 3 vulnerability-detection 3 vulnerability-assessment 3 vulnerability 3 security-scanner 3 hostile-subdomain-takeover 2 dangling-dns 2 takeovers 2 takeover-checker 2 host-takeover 2 azure 2 cloud 2 gcp 2 cname-check 2 bounty 2 linux 2 offensive-security 2 s3-bucket 2 s3 2 route53 2 sublist3r 2 automation 2 scanner 2 xss-vulnerability 2 cloudflare 2 attack-surface 2 dast 2 security-research 2 subdomainsbrute 2 subdomains-scanner 2 hostile 2 zone-transfers 2 concurrency 2 easm 1 offensive 1 deface-website 1 pentest-scripts 1 powershell 1 vulnerabilities 1 auto-takeover-subdomain 1 blueteam 1 termux 1 2024 1 custom-template 1 cve 1 nuclei 1 nuclei-detection 1 nuclei-template-cve 1 terraform 1 offensiveterraform 1 cloud-security 1 whitehat 1 redirect 1 dns-record 1 asyncio 1 cyberzest 1 endpoint-discovery 1