A subdomain takeover occurs when an attacker gains control over a subdomain of a target domain. Typically, this happens when the subdomain has a canonical name (CNAME) in the Domain Name System (DNS), but no host is providing content for it. This tool takes a given list of subdomains and checks if they are vulnerable.
./subhunter -h Usage of ./subhunter: -l string File including a list of hosts to scan -o string File to save results -t int Number of threads for scanning (default 50) -timeout int Timeout in seconds (default 20)
[+] Nothing found at www.ubereats.com: Not Vulnerable [+] Nothing found at testauth.ubereats.com: Not Vulnerable [+] Nothing found at apple-maps-app-clip.ubereats.com: Not Vulnerable [+] Nothing found at about.ubereats.com: Not Vulnerable [+] Nothing found at beta.ubereats.com: Not Vulnerable [+] Nothing found at ewp.ubereats.com: Not Vulnerable [+] Nothing found at edgetest.ubereats.com: Not Vulnerable [+] Nothing found at guest.ubereats.com: Not Vulnerable [+] BadSSL: Possible takeover found at mixed-script.badssl.com: Vulnerable --> for demo [+] Nothing found at info.ubereats.com: Not Vulnerable [+] Nothing found at learn.ubereats.com: Not Vulnerable [+] Nothing found at merchants.ubereats.com: Not Vulnerable [+] Nothing found at guest-beta.ubereats.com: Not Vulnerable [+] Nothing found at merchant-help.ubereats.com: Not Vulnerable [+] Nothing found at merchants-beta.ubereats.com: Not Vulnerable [+] Nothing found at merchants-staging.ubereats.com: Not Vulnerable [+] Nothing found at messages.ubereats.com: Not Vulnerable [+] Nothing found at order.ubereats.com: Not Vulnerable [+] Nothing found at restaurants.ubereats.com: Not Vulnerable [+] Nothing found at payments.ubereats.com: Not Vulnerable [+] Nothing found at static.ubereats.com: Not Vulnerable
