API tools faq
paste
Advertisement
TVT618

TakeOver - Sub-Domain TakeOver Vulnerability Scanner

TVT618
Jul 25th, 2018
179
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.96 KB | None | 0 0
raw download clone embed print report
  1. About TakeOver:
  2. Sub-domain takeover vulnerability occur when a sub-domain (subdomain.example.com) is pointing to a service (e.g: GitHub, AWS/S3,..) that has been removed or deleted. This allows an attacker to set up a page on the service that was being used and point their page to that sub-domain. For example, if subdomain.example.com was pointing to a GitHub page and the user decided to delete their GitHub page, an attacker can now create a GitHub page, add a CNAME file containing subdomain.example.com, and claim subdomain.example.com. For more information: here
  3.  
  4. Installation:
  5. git clone https://github.com/m4ll0k/takeover.git
  6. cd takeover
  7. sudo python takeover.py
  8.  
  9. Usage:
  10. python takeover.py -s site.site.com
  11. python takeover.py -s --set-proxy xxx.xxx.xxx.xxx
  12. python takeover.py -s sub.txt --set-output sub_out.txt
  13. python takeover.py -s --set-output sub_out.txt --set-proxt xxx.xxx.xxx.xxx
  14.  
  15. Download TakeOver: https://github.com/m4ll0k/takeover
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!