SubOver - Subdomain Takeover Tool - Hacking And Security Tools

Subover is a Hostile Subdomain Takeover tool originally written in python but rewritten from scratch in Golang. Since it's redesign, it has been aimed with speed and efficiency in mind. Till date, SubOver detects 30+ services which is much more than any other tool out there. The tool uses Golang concurrency and hence is very fast. It can easily detect and report potential subdomain takeovers that exist. The list of potentially hijackable services is very comprehensive and it is what makes this tool so powerful.

Installing You need to have Golang installed on your machine. There are no additional requirements for this tool.

go get github.com/Ice3man543/SubOver

Usage
./SubOver -l subdomains.txt

-l List of Subdomains
-a Check all hosts regardless of CNAME (Time Consuming and prone to fp's)
-t Number of concurrent threads. (Default 10)
-v Show verbose output (Default False)
-https Force HTTPS Connection (Default HTTP)
-timeout Set custom timeout (Default 10)
-h Show help message

Currently Check Services

Github, Heroku, Unbounce, Tumblr, Shopify, Instapage, Desk, Tictail, Campaignmonitor, Cargocollective, Statuspage, Amazonaws, Cloudfront, Bitbucket, Smartling, Acquia, Fastly, Pantheon, Zendesk, Uservoice, Ghost, Freshdesk, Pingdom, Tilda, Wordpress, Teamwork, Helpjuice, Helpscout, Cargo, Feedpress, Surge, Surveygizmo, Mashery, Intercom, Webflow, Kajabi, Thinkific, Tave, Wishpond, Aftership, Aha, Brightcove, Bigcartel, Activecompaign, Compaignmonitor, Acquia, Proposify, Simplebooklet, Getresponse, Vend, Jetbrains, Azure .

Download SubOver

Hacking And Security Tools

Search Suggest

SubOver - Subdomain Takeover Tool

Post a Comment

pspy tool - Monitor linux processes without root permissions

Windows DHCP Remote Code Execution Vulnerability (CVE-2023-28231)

DirtyPipe for Android - Root Exploit for Pixel 6

Burp Suite Professional Edition v1.7.34

Exploit Released for VMware Aria Operations for Networks RCE (CVE-2023-20887) Bug