Cyber Security News Aggregator
.Cyber Tzar
provide acyber security risk management
platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.
First slide label
Some representative placeholder content for the first slide.
Second slide label
Some representative placeholder content for the second slide.
Third slide label
Some representative placeholder content for the third slide.
dnsReaper now supports subdomain attacks using project discovery and SecurityTrails
published on 2023-07-21 13:29:08 UTC by /u/punksecurity_simonContent:
Hey all,
I help maintain dnsReaper which is a subdomain takeover tool. It's free, available on GitHub and docker and looks for domains vulnerable to domain takeovers.
Today we've added 2 new integrations!
Project discovery have a massive database of subdomains called CHAOS and you can now query and test domains in dnsReaper.
We've also added SecurityTrails, which also has a huge public subdomain list.
This means that you can just point dnsReaper at a bug bounty domain and let it run. There will be false positives for sure, but we have 61 signatures so hopefully there will be some nice easy findings too.
Our blog post on the new features is here:
https://punksecurity.co.uk/blog/dnsreaper_pd/
Our GitHub is over here:
https://github.com/punk-security/dnsReaper
It's a free tool that we built just to highlight this issue and educate. Please give it a star and share it, we'd appreciate it.
[link] [comments]
https://www.reddit.com/r/netsec/comments/155o304/dnsreaper_now_supports_subdomain_attacks_using/
Published: 2023 07 21 13:29:08
Received: 2023 07 21 14:21:28
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security
Views: 1
