Subover is a Hostile Subdomain Takeover tool designed in Python. From start, it has been aimed with speed and efficiency in mind. Till date, SubOver detects 36 services which is much more than any other tool out there. The tool is multithreaded and hence delivers good speed. It can easily detect and report potential subdomain takeovers that exist. The list of potentially hijackable services is very comprehensive and it is what makes this tool so powerful.
Installing
You need to have Python 2.7 installed on your machine. The following additional requirements are required -
- dnspython
- colorama
git clone https://github.com/Ice3man543/SubOver.git .
cd SubOver
# consider installing virtualenv
pip install -r requirements.txt
python subover.py -hUsage
python subover.py -l subdomains.txt -o output_takeovers.txt-l subdomains.txtis the list of target subdomains. These can be discovered using various tool such as sublist3r or others.-o output_takeovers.txtis the name of the output file. (Optional & Currently not very well formatted)-t20 is the default number of threads that SubOver will use. (Optional)-Vis the switch for showing verbose output. (Optional, Default=False)
Currently Checked Services
- Github
- Heroku
- Unbounce
- Tumblr
- Shopify
- Instapage
- Desk
- Tictail
- Campaignmonitor
- Cargocollective
- Statuspage
- Amazonaws
- Cloudfront
- Bitbucket
- Squarespace
- Smartling
- Acquia
- Fastly
- Pantheon
- Zendesk
- Uservoice
- WPEngine
- Ghost
- Freshdesk
- Pingdom
- Tilda
- Wordpress
- Teamwork
- Helpjuice
- Helpscout
- Cargo
- Feedpress
- Freshdesk
- Surge
- Surveygizmo
- Mashery
FAQ
Q: What should my wordlist look like?
A: Your wordlist should include a list of subdomains you're checking and should look something like:
backend.example.com
something.someone.com
apo-setup.fxc.something.comYour tool sucks!
Yes, you're probably correct. Feel free to:
- Not use it.
- Show me how to do it better.
Contact
Twitter: @Ice3man543
Credits
- Subdomain Takeover Scanner by 0x94
- subjack : Hostile Subdomain Takeover Tool Written In GO
- Anshumanbh : tko-subs
- Black Hat Hacker Tools
- Hacker Tool Kit
- Hacker Techniques Tools And Incident Handling
- Hacker Tools For Pc
- Hack Tools Pc
- Hack Tools Download
- Hacking Tools For Mac
- Underground Hacker Sites
- Hacking Tools For Pc
- Hacker Tools Linux
- Hacker Tools Apk Download
- Hacker Tools For Ios
- Hack Website Online Tool
- Hacking Tools Pc
- Hacker Tools Apk
- Hacking Tools
- Hack Tool Apk No Root
- Hackers Toolbox
- Tools For Hacker
- Hacking Tools Kit
- Black Hat Hacker Tools
- Bluetooth Hacking Tools Kali
- Pentest Tools Review
- Pentest Tools Framework
- Hacker Search Tools
- Underground Hacker Sites
- Termux Hacking Tools 2019
- Hacking Tools Hardware
- Pentest Automation Tools
- World No 1 Hacker Software
- Hacking Tools Download
- Hacker Tools For Pc
- Hack Tools For Ubuntu
- Pentest Recon Tools
- How To Install Pentest Tools In Ubuntu
- Usb Pentest Tools
- Nsa Hack Tools Download
- Hacker Tools Linux
- Pentest Tools For Windows
- Blackhat Hacker Tools
- Tools For Hacker
- Game Hacking
- Hacker Tools 2019
- Hack Tools Mac
- Hacker Tool Kit
- Hacking Tools For Windows Free Download
- Nsa Hacker Tools
- Blackhat Hacker Tools
- Pentest Tools For Mac
- Hacker Tools Apk Download
- Best Hacking Tools 2020
- Hack Tools For Windows
- Hacking Tools Hardware
- Underground Hacker Sites
- Underground Hacker Sites
- What Are Hacking Tools
- Wifi Hacker Tools For Windows
- Github Hacking Tools
- Pentest Tools Port Scanner
- Hacking Tools For Windows 7
- Hacker Tools Online
- Computer Hacker
- Pentest Tools For Windows
- Tools 4 Hack
- Hacker Tools For Windows
- Hack Apps
- Hacker Techniques Tools And Incident Handling
- Android Hack Tools Github
- Hacking Tools Name
- Nsa Hacker Tools
- Hack Apps
- Hacker Techniques Tools And Incident Handling
- Hacking Tools Usb
- Computer Hacker
- Tools For Hacker
- Best Hacking Tools 2019
- Hack Tools Github
.jpg)
No comments:
Post a Comment