cqr-cryeye-forks / domain-protect

Protect against subdomain takeover

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

domain-protect

  • scan Amazon Route53 across an AWS Organization for domain records vulnerable to takeover
  • scan Cloudflare for vulnerable DNS records
  • take over vulnerable subdomains yourself before attackers and bug bounty researchers
  • automatically create known issues in Bugcrowd
  • vulnerable domains in Google Cloud DNS can be detected by Domain Protect for GCP

blog posts

deploy to security audit account

Alt text

scan your entire AWS Organization

Alt text

take over vulnerable domains in security account

receive alerts by Slack or email

deploy in your AWS Organization using GitHub Actions

Alt text

or manually scan from your laptop

Alt text

documentation

Manual scans - AWS
Manual scans - CloudFlare
Architecture
Database
Reports
Automated takeover optional feature
Cloudflare optional feature
Bugcrowd optional feature
Vulnerability types
Vulnerable A records (IP addresses) optional feature
Requirements
Installation
AWS IAM policies
CI/CD
Development
Code Standards
Automated Tests
Manual Tests

limitations

  • this tool cannot guarantee 100% protection against subdomain takeover
  • it currently only scans Amazon Route53 and Cloudflare, and only checks a limited number of takeover types
  • vulnerable domains in Google Cloud DNS can be detected by Domain Protect for GCP

About

Protect against subdomain takeover

License:Other


Languages

Language:Python 66.7%Language:HCL 27.1%Language:Smarty 4.7%Language:Shell 1.0%Language:HTML 0.5%