{"id":13820789,"url":"https://github.com/domain-protect/domain-protect","last_synced_at":"2025-05-16T10:33:19.515Z","repository":{"id":37468602,"uuid":"365959385","full_name":"domain-protect/domain-protect","owner":"domain-protect","description":"OWASP Domain Protect - prevent subdomain takeover","archived":true,"fork":false,"pushed_at":"2024-12-23T22:04:36.000Z","size":19703,"stargazers_count":401,"open_issues_count":3,"forks_count":64,"subscribers_count":12,"default_branch":"main","last_synced_at":"2024-12-23T23:18:48.269Z","etag":null,"topics":["aws","bugbounty","cloudflare","dns","owasp","security","security-tools","serverless","terraform"],"latest_commit_sha":null,"homepage":"https://owasp.org/www-project-domain-protect/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/domain-protect.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-05-10T07:44:00.000Z","updated_at":"2024-12-23T22:05:19.000Z","dependencies_parsed_at":"2023-09-29T08:33:46.363Z","dependency_job_id":"ddb9804d-1332-4214-b401-0faf178d78d8","html_url":"https://github.com/domain-protect/domain-protect","commit_stats":null,"previous_names":[],"tags_count":18,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/domain-protect%2Fdomain-protect","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/domain-protect%2Fdomain-protect/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/domain-protect%2Fdomain-protect/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/domain-protect%2Fdomain-protect/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/domain-protect","download_url":"https://codeload.github.com/domain-protect/domain-protect/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254512851,"owners_count":22083474,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","bugbounty","cloudflare","dns","owasp","security","security-tools","serverless","terraform"],"created_at":"2024-08-04T08:01:09.072Z","updated_at":"2025-05-16T10:33:14.504Z","avatar_url":"https://github.com/domain-protect.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# OWASP Domain Protect\n[![Version](https://img.shields.io/github/v/release/domain-protect/domain-protect)](https://github.com/domain-protect/domain-protect/releases/tag/0.1.0)\n[![Python 3.x](https://img.shields.io/badge/Python-3.x-blue.svg)](https://www.python.org/)\n[![License](https://img.shields.io/badge/license-Apache%202.0-blue.svg)](https://www.apache.org/licenses/LICENSE-2.0)\n![OWASP Maturity](https://img.shields.io/badge/owasp-incubator%20project-53AAE5.svg)\n\n## Prevent subdomain takeover ...\n![Alt text](docs/images/slack-webhook-notifications.png?raw=true \"Domain Protect architecture\")\n\n## ... with serverless cloud infrastructure\n![Alt text](docs/images/domain-protect.png?raw=true \"Domain Protect architecture\")\n\n## OWASP Global AppSec Dublin - talk and demo\n[![Global AppSec Dublin 2023](docs/images/global-appsec-dublin.png)](https://youtu.be/fLrRLmKZTvE)\n\n## Features\n* scan Amazon Route53 across an AWS Organization for domain records vulnerable to takeover\n* scan [Cloudflare](docs/cloudflare.md) for vulnerable DNS records\n* take over vulnerable subdomains yourself before attackers and bug bounty researchers\n* automatically create known issues in [Bugcrowd](docs/bugcrowd.md) or [HackerOne](docs/hackerone.md)\n* vulnerable domains in Google Cloud DNS can be detected by [Domain Protect for GCP](https://github.com/ovotech/domain-protect-gcp)\n* [manual scans](manual_scans/aws/README.md) of cloud accounts with no installation\n\n## Installation\n* the simplest way to install is to use the separate [Domain Protect Deploy](https://github.com/domain-protect/domain-protect-deploy) repository with GitHub Actions deployment workflow\n* for other methods see [Installation](docs/installation.md)\n\n## Collaboration\nWe welcome collaborators! Please see the [OWASP Domain Protect website](https://owasp.org/www-project-domain-protect/) for more details.\n\n## Documentation\n[Manual scans - AWS](manual_scans/aws/README.md)\u003cbr\u003e\n[Manual scans - CloudFlare](manual_scans/cloudflare/README.md)\u003cbr\u003e\n[Architecture](docs/architecture.md)\u003cbr\u003e\n[Database](docs/database.md)\u003cbr\u003e\n[Reports](docs/reports.md)\u003cbr\u003e\n[Automated takeover](docs/automated-takeover.md) *optional feature*\u003cbr\u003e\n[Cloudflare](docs/cloudflare.md) *optional feature*\u003cbr\u003e\n[Bugcrowd](docs/bugcrowd.md) *optional feature*\u003cbr\u003e\n[HackerOne](docs/hackerone.md) *optional feature*\u003cbr\u003e\n[Vulnerability types](docs/vulnerability-types.md)\u003cbr\u003e\n[Vulnerable A records (IP addresses)](docs/a-records.md) *optional feature*\u003cbr\u003e\n[Requirements](docs/requirements.md)\u003cbr\u003e\n[Installation](docs/installation.md)\u003cbr\u003e\n[Slack Webhooks](docs/slack-webhook.md)\u003cbr\u003e\n[AWS IAM policies](docs/aws-iam-policies.md)\u003cbr\u003e\n[CI/CD](docs/ci-cd.md)\u003cbr\u003e\n[Development](docs/development.md)\u003cbr\u003e\n[Code Standards](docs/code-standards.md)\u003cbr\u003e\n[Automated Tests](docs/automated-tests.md)\u003cbr\u003e\n[Manual Tests](docs/manual-tests.md)\u003cbr\u003e\n[Conference Talks and Blog Posts](docs/talks.md)\u003cbr\u003e\n\n## Limitations\nThis tool cannot guarantee 100% protection against subdomain takeovers.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdomain-protect%2Fdomain-protect","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdomain-protect%2Fdomain-protect","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdomain-protect%2Fdomain-protect/lists"}