0007301: DNSTake - A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

ID	Project	Category	View Status	Date Submitted	Last Update

0007301	Kali Linux	Queued Tool Addition	public	2021-08-31 10:03	2021-08-31 10:05

Reporter	g0tmi1k	Assigned To
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	acknowledged	Resolution	open

Summary	0007301: DNSTake - A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
Description	[Name] - DNSTake [Version] - v0.01 [Homepage] - https://github.com/pwnesia/dnstake [Download] - https://github.com/pwnesia/dnstake/tags [Author] - Pwnesia [License] - MIT [Description] - A fast tool to check missing hosted DNS zones that can lead to subdomain takeover DNS takeover vulnerabilities occur when a subdomain (subdomain.example.com) or domain has its authoritative nameserver set to a provider (e.g. AWS Route 53, Akamai, Microsoft Azure, etc.) but the hosted zone has been removed or deleted. Consequently, when making a request for DNS records the server responds with a SERVFAIL error. This allows an attacker to create the missing hosted zone on the service that was being used and thus control all DNS records for that (sub)domain.¹ [Dependencies] - go

Date Modified	Username	Field	Change
2021-08-31 10:03	g0tmi1k	New Issue
2021-08-31 10:04	g0tmi1k	Note Added: 0015053
2021-08-31 10:05	g0tmi1k	Status	new => acknowledged
2021-08-31 10:05	g0tmi1k	Category	New Tool Requests => Queued Tool Addition

g0tmi1k 2021-08-31 10:04 administrator ~0015053	@kali-team, please could this be packaged up.