Sub Domain Takeover
Hi, in this tutorial we will see what is Sub domain take over and how it works.
The Subdomain takeover is considered to be highly vulnerable and it could cause to control complete subdomain takeover. The takeover could be done only if the subdomain is using third-party services.
So what happens in it???
For example, we have the main domain as praveen.com and we got subdomain hosted at Heroku, Github or Squarespace. The service can be like workhard.herokudns.com and it is linked to work.praveen.com, so if the user hits work.praveen.com it will redirect to workhard.herokudns.com.
After sometime we decided not to use it or subscription got over, by now if some attacker finds out a service workhard.herokudns.com and claims it, he could get access to it and our redirect will work.
So if our client returns to site work.praveen.com then he will be directed to that site and the attacker might have some login page to capture data or any malicious site which may be dangerous and the client could be hacked and our details too.
Prevention:
It can be protected only by removing unnecessary links and domain.
Related Articles
DOM XSS
Hi, In this part of Damn Vulnerable Web Application. (DVWA) we will see how the DOM XSS is been executed. DOM Based XSS simply means a Cross-site scripting vulnerability that appears in the DOM (Document Object Model) instead of part of the HTML. ...How to setup and use Mobile Security Framework(MobSF)
Hi, This post is regarding How to setup and use Mobile Security Framework(MobSF). Requirements : Python 2.7, Oracle JDK 1.7 or above. After this installation follows this steps. Step 1: Search Mobile Security Framework. Download this Files. Step 2: ...Web security issues you need to be concerned
1. SQL Injection (SQLi) The SQL injection is the most common web security issue faced by most of the companies. An SQL injection is the injection attack where hackers can input malicious SQL queries to pull sensitive data from the database. These SQL ...