id: detect-all-takeovers info: name: Subdomain Takeover Detection author: "melbadry9 & pxmme1337 & geeknik" severity: high # Update this list with new takeovers matchers # Do not delete other template files for takeover # https://github.com/EdOverflow/can-i-take-over-xyz # You need to claim the subdomain / CNAME of the subdomain to confirm the takeover. # Do not report subdomain takeover issues only based on detection. # Total number of services #72 requests: - method: GET path: - "{{BaseURL}}/" matchers-condition: or matchers: - type: word name: acquia words: - If you are an Acquia Cloud customer and expect to see your site at this address - The site you are looking for could not be found. - type: word name: agilecrm words: - Sorry, this page is no longer available. - type: word name: airee words: - Ошибка 402. Сервис Айри.рф не оплачен - type: word name: aftership words: - Oops.

The page you're looking for doesn't exist. - type: word name: aha words: - There is no portal here ... sending you back to Aha! - type: word name: anima words: - "If this is your website and you've just created it, try refreshing in a minute" - type: word name: aws-bucket words: - "The specified bucket does not exist" - type: word name: bigcartel words: - "

Oops! We couldn’t find that page.

" - type: word name: bitbucket words: - The page you have requested does not exist - Repository not found - type: word name: brightcove words: - '

Error Code: 404

Uh oh. That page doesn’t exist.

- type: word name: jazzhr words: - This account no longer active - type: word name: jetbrains words: - is not a registered InCloud YouTrack. - type: word name: kinsta words: - No Site For Domain - type: word name: landingi words: - It looks like you're lost - The page you are looking for is not found - type: word name: launchrock words: - It looks like you may have taken a wrong turn somewhere. Don't worry...it happens to all of us. - type: word name: mashery words: - Unrecognized domain - type: word name: ngrok words: - ngrok.io not found - Tunnel *.ngrok.io not found - type: word name: pantheon.io words: - "The gods are wise, but do not know of the site which you seek." - type: word name: pingdom words: - Public Report Not Activated - This public report page has not been activated by the user - type: word name: proposify words: - If you need immediate assistance, please contact Error 404: Page Not Found" - type: word name: teamwork words: - Oops - We didn't find your site. - type: word name: tictail words: - Building a brand of your own? - 'to target URL: The page you are looking for doesn't exist or has been moved.
- type: word name: wishpond words: - https://www.wishpond.com/404?campaign=true - type: word name: wordpress words: - Do you want to register - type: regex name: worksites regex: - "(?:Company Not Found|you’re looking for doesn’t exist)" - type: word name: wufoo words: - Profile not found - Hmmm....something is not right. - type: word name: zendesk words: - this help center no longer exists - type: word name: readthedocs words: - unknown to Read the Docs - type: word name: tilda words: - Please renew your subscription - Please go to the site settings and put the domain name in the Domain tab. - type: word name: smart-jobboard words: - This job board website is either expired or its domain name is invalid. - type: word name: netlify words: - "Not Found" - "server: Netlify" condition: and part: all - type: word name: vercel words: - The deployment could not be found on Vercel. - DEPLOYMENT_NOT_FOUND condition: and