Commit Graph

64 Commits (42cf71e95627aad9044c003cc7bb350ef84f0416)

Author SHA1 Message Date
sandeep 2500db0987 misc update 2021-09-07 21:31:50 +05:30
sandeep ded0c4de57 Removing takeover templates with no actual impact 2021-09-07 21:31:35 +05:30
forgedhallpass 77103bc629 Satisfying the linter (all errors and warnings)
* whitespace modifications only
2021-08-19 17:44:46 +03:00
forgedhallpass f55d6b75e1 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:59:12 +03:00
forgedhallpass 7b29be739e Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
forgedhallpass cdf9451158 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-18 14:44:27 +03:00
sandeep 820b9baf87 minor update 2021-08-16 23:03:21 +05:30
sandeep e9ddcbd915 Update announcekit-takeover.yaml 2021-08-16 22:29:39 +05:30
Mohamed Elbadry 5671e89f95
add announcekit-takeover.yaml 2021-08-16 18:06:05 +02:00
Mohamed Elbadry 4610ecb97b
Add files via upload 2021-08-16 18:01:41 +02:00
sandeep 11b976406b vercel takeover update
moved severity to info as it requires manual verification.
2021-08-08 19:51:42 +05:30
sandeep 76f4a0131f Fixed ghost-takeover template 2021-08-08 19:23:42 +05:30
sandeep e896a8982d misc updates 2021-08-02 12:53:35 +05:30
sandeep d2970f3529 misc changes 2021-07-17 23:55:56 +05:30
Prial Islam 9eabca6e4c Updated Heroku and netlify takeover detection 2021-07-17 22:55:19 +06:00
RT 120d2d7544
Change the severity to info
This attack isn't possible
Ref - https://github.com/EdOverflow/can-i-take-over-xyz/issues/206#issuecomment-869354802
2021-07-13 19:27:02 +05:30
Prince Chaddha 1c982979e4
Update ceros-takeover.yaml 2021-07-10 15:03:54 +05:30
Prince Chaddha 152ef6f809
Update ceros-takeover.yaml 2021-07-10 14:56:54 +05:30
abison1 7dc4669049
Create ceros-takeover.yaml 2021-07-06 22:16:40 -04:00
sandeep 4538e18675 Update sprintful-takeover.yaml 2021-06-28 20:57:18 +05:30
sandeep 2fddcb265d Added sprintful-takeover 2021-06-28 20:54:44 +05:30
Prince Chaddha 2ccd670b66
Create flywheel-takeover.yaml 2021-06-24 20:05:36 +05:30
Prince Chaddha 83ce809e8d Updated author names 2021-06-09 17:50:56 +05:30
Sandeep Singh 6244641122
Merge pull request #1633 from pdelteil/patch-5
Update smartling-takeover.yaml
2021-06-06 14:06:51 +05:30
sandeep c8dd574555 Minor improvements 2021-06-06 12:07:19 +05:30
Philippe Delteil 888cc6418d
Update smartling-takeover.yaml
There's no evidence the takeover is possible. Is not possible to create an account or request for a demo. 

https://github.com/EdOverflow/can-i-take-over-xyz/issues/67
2021-06-05 12:35:27 -04:00
sandeep ba0d092d4d Update landingi-takeover.yaml 2021-06-05 09:40:37 +05:30
sandeep 2a8605e777 Update bitbucket-takeover.yaml 2021-05-31 03:35:34 +05:30
sandeep 6af263bb30 Matcher update 2021-05-31 03:34:10 +05:30
sandeep bb71a2b9a0 strikingly-takeover - Improved matcher 2021-05-07 14:33:07 +05:30
sandeep d8311165a5 Wufoo-takeover - Improved matcher 2021-05-07 14:24:40 +05:30
sandeep 62f1da31fb Removing unbounce-takeover 2021-05-07 14:20:54 +05:30
Sandeep Singh 1dc592a59a
Merge pull request #1431 from pdelteil/patch-2
Update tilda-takeover.yaml
2021-05-07 14:18:03 +05:30
sandeep a1510f8529 minor update 2021-05-07 14:16:54 +05:30
sandeep 992355d052 AWS takeover - Improved matcher 2021-05-07 14:13:35 +05:30
Philippe Delteil c0db77d9f9
Update tilda-takeover.yaml
This update is based on this issue https://github.com/EdOverflow/can-i-take-over-xyz/issues/155
2021-05-06 23:57:24 -04:00
sandeep 83b1149532 Added freshservice 2021-05-02 16:22:04 +05:30
sandeep 349e9df1b6 Update freshdesk-takeover.yaml 2021-05-02 12:54:37 +05:30
Philippe Delteil 77f276e4a6
Update freshdesk-takeover.yaml
freshservice and freshsdesk are different services from the same provider. Adding the condition negative true will only output freshdesk take overs, I created another template to detect only freshservice take overs.
2021-05-02 03:11:01 -04:00
sandeep e254f7b884 Update fastly-takeover.yaml 2021-04-28 16:57:07 +05:30
PD-Team d1792193d5
Merge pull request #1197 from rtcms/master
Updated severity of  acquia-takeover to info
2021-04-05 00:14:17 +05:30
RT fc5546e472
Updated severity to info
Updated severity to info because it' not vulnerable according to https://github.com/EdOverflow/can-i-take-over-xyz/issues/103
2021-04-05 00:03:23 +05:30
Geeknik Labs 80d53a7df3
Update wordpress-takeover.yaml 2021-04-02 19:41:56 +00:00
sandeep 9aff53118b matcher fix 2021-04-02 02:18:44 +05:30
sandeep fff23cf462 Update medium-takeover.yaml 2021-04-01 00:13:15 +05:30
RT 7a742b10d8
Added Subdomain takeover via Medium
Ref - https://hackerone.com/reports/1034023
2021-03-31 22:59:57 +05:30
sandeep 98325f8655 few updates / fixes 2021-03-31 19:21:10 +05:30
Gal Nagli 915628a20b
Update freshdesk-takeover 2021-03-31 16:04:58 +03:00
Gal Nagli 70425d69c3
Create freshdesk-takeover 2021-03-31 15:53:54 +03:00
Geeknik Labs c8646b6f92
Update wordpress-takeover.yaml
nuclei -t /tmp/wordpress-takeover.yaml -target https://9824q75q435yq2345.wordpress.com
[2021-03-23 14:12:16] [wordpress-takeover] [http] [high] https://9824q75q435yq2345.wordpress.com
2021-03-23 19:13:34 +00:00