Scan a company's subdomains for takeover vulnerabilities before an attacker does.
Check a single subdomain quickly via a command-line flag.
Run a bulk scan against a list of subdomains from a text file.
| realrenatto/take-over | mitchellh/go-libucl | dream-horizon-org/datagen | |
|---|---|---|---|
| Stars | 57 | 56 | 59 |
| Language | Go | Go | Go |
| Last pushed | — | 2019-03-08 | — |
| Maintenance | — | Dormant | — |
| Setup difficulty | easy | moderate | easy |
| Complexity | 2/5 | 2/5 | 2/5 |
| Audience | developer | developer | developer |
Figures from each repo's GitHub metadata at analysis time.
Build from source with the Go toolchain, no other dependencies.
Take-Over is a command-line security tool written in Go that checks whether subdomains are vulnerable to a specific kind of attack called subdomain takeover. This type of vulnerability happens when a subdomain (for example, blog.yourcompany.com) points to a cloud service that has since been deleted or deregistered, leaving the domain name pointing at nothing. An attacker can sometimes register that same cloud resource and take control of traffic arriving at the subdomain. The tool works by taking one or more subdomain addresses as input, checking them against known patterns for various cloud service providers, and reporting which ones appear to be vulnerable. You can scan a single address using a flag on the command line, or provide a text file containing a list of addresses to check in bulk. By default only vulnerable results are shown, though a verbose mode will also display addresses that appear safe. Installing the tool requires building it from source using the Go programming language toolchain. The build process is standard and the README provides the exact commands for Linux, macOS, and Windows. The resulting binary is a single executable file with no dependencies to manage. The README is brief and focused on usage, covering only the available command-line flags and a few short examples. No details are given about which cloud service providers are checked, how the detection logic works, or how often the provider fingerprints are updated. The project is small and recently created, with 57 stars at the time of indexing.
A Go command-line tool that scans subdomains to check whether they are vulnerable to subdomain takeover attacks.
Mainly Go. The stack also includes Go.
Setup difficulty is rated easy, with roughly 5min to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.