Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/buckhacker/SubDomainTakeoverTools
https://github.com/buckhacker/SubDomainTakeoverTools
Last synced: 21 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/buckhacker/SubDomainTakeoverTools
- Owner: buckhacker
- Created: 2018-09-10T18:56:50.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2018-09-12T05:52:25.000Z (about 6 years ago)
- Last Synced: 2024-08-05T17:40:18.069Z (4 months ago)
- Language: Python
- Size: 2.93 KB
- Stars: 35
- Watchers: 3
- Forks: 11
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - buckhacker/SubDomainTakeoverTools - (Python)
README
# SubDomainTakeoverTools
In this repository I will put a series of scripts for testing Subdomain Takeover vulnerability.
# ShopifySubdomainTakeoverCheck.py
The script is using three methods to detect if Subdomain Takeover is possible on Shopify.
We use three methods in order to avoid False Positives because are quite annoying on large scale and automation.
First of all you must understand that on Shopify you have two methods to perform a Subdomain Takeover, more information are available in the following article:
https://medium.com/@thebuckhacker/how-to-do-55-000-subdomain-takeover-in-a-blink-of-an-eye-a94954c3fc75
How to use:
python3 ./ShopifySubdomainTakeoverCheck.py sub.domain.to.check