subdomain-takeover
CommunityDetect and assess subdomain takeover vulnerabilities.
Software Engineering#reconnaissance#vulnerability detection#cloud security#security assessment#subdomain takeover#dangling DNS
Authorovertimepog
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automates the detection of subdomain takeover vulnerabilities, which can be exploited to host malicious content or intercept sensitive data.
Core Features & Use Cases
- Automated Detection: Identifies dangling CNAME, NS, and MX records pointing to cloud services that can be claimed.
- Impact Analysis: Assesses the potential severity of a takeover based on how the subdomain is used (e.g., CSP, CORS, OAuth).
- Second-Order Takeovers: Detects vulnerabilities where a trusted third-party domain has a claimable subdomain.
- Use Case: A security team can use this skill to proactively scan their entire attack surface for subdomain takeover risks before attackers can exploit them.
Quick Start
Run the subdomain-takeover skill against the target domain example.com.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: subdomain-takeover Download link: https://github.com/overtimepog/greyhatcc/archive/main.zip#subdomain-takeover Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.