Subjack is a Subdomain Takeover tool written in Go designed to scan a list of subdomains concurrently and identify ones that are able to be hijacked. With Go's speed and efficiency, this tool really stands out when it comes to mass testing. Always double-check the results manually to rule out false positives. Subjack will also check for subdomains attached to domains that don't exist (NXDOMAIN) and are available to be registered. No need for dig ever again! This is still cross-compatible too. You can use scanio.sh which is kind of a PoC script to mass-locate vulnerable subdomains using results from Rapid7's Project Sonar. This script parses and greps through the dump for desired CNAME records and makes a large list of subdomains to check with subjack if they're vulnerable to Hostile Subdomain Takeover. Of course, this isn't the only method to get a large amount of data to test.

Features

  • Custom fingerprint support
  • New Services (Re-added Zendesk && Added Readme, Bitly, and more)
  • Slight performance enhancements
  • Requires Go
  • Add subjack to your workflow
  • Subjack will also check for subdomains attached to domains that don't exist

Project Samples

subjack Screenshot 1

Project Activity

See All Activity >

Categories

Frameworks

License

Apache License V2.0

Follow subjack

subjack Web Site

Other Useful Business Software
The most advanced C and C++ source code analyzer Icon
The most advanced C and C++ source code analyzer

Combining the benefits of static and dynamic source code analysis to deliver the most advanced & exhaustive code verification tool.

TrustInSoft Analyzer is a C and C++ source code analyzer powered by formal methods, mathematical & logical reasonings that allow for exhaustive analysis of source code. This analysis can be run without false positives or false negatives, so that every real bug in the code is found. Developers receive several benefits: a user-friendly graphical interface that directs developers to the root cause of bugs, and instant utility to expand the coverage of their existing tests. Unlike traditional source code analysis tools, TrustInSoft’s solution is not only the most comprehensive approach on the market but is also progressive, instantly deployable by developers, even if they lack experience with formal methods, from exhaustive analysis up to a functional proof that the software developed meets specifications.
Learn More
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of subjack!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Go

Related Categories

Go Frameworks

Registered

2023-01-27
Report inappropriate content