检查子域是否可以被劫持
aws-check-for-domain-hijacking的Python项目详细描述
#aws_check_for_domain_hicking.py
说明:
Script has been written in python 2.7 This script fetches domains from AWS For each domain on AWS, it fetches corresponding subdomains It checks all these subdomains if they are vulnerable to subdomain hijacking Writes output to multiple files
用法:
- Configure aws credentials on your system
- run this “sudo python2 aws_check_for_domain_hijacking.py”
未来前景:
- Script will include a known endpoint check against subdomain list
- Script can gatehr more subdomains from publicly accessible resources like shodan, google etc