Domain-Protect : OWASP Domain Protect

Domain-Protect is an OWASP Domain Protect – prevent subdomain takeover.

Prevent subdomain takeover …

… with serverless cloud infrastructure

OWASP Global AppSec Dublin – talk and demo

Features

scan Amazon Route53 across an AWS Organization for domain records vulnerable to takeover
scan Cloudflare for vulnerable DNS records
take over vulnerable subdomains yourself before attackers and bug bounty researchers
automatically create known issues in Bugcrowd or HackerOne
vulnerable domains in Google Cloud DNS can be detected by Domain Protect for GCP
manual scans of cloud accounts with no installation

Installation

the simplest way to install is to use the separate Domain Protect Deploy repository with GitHub Actions deployment workflow
for other methods see Installation

Collaboration

We welcome collaborators! Please see the OWASP Domain Protect website for more details.

Documentation

Manual scans – AWS
Manual scans – CloudFlare
Architecture
Database
Reports
Automated takeover optional feature
Cloudflare optional feature
Bugcrowd optional feature
HackerOne optional feature
Vulnerability types
Vulnerable A records (IP addresses) optional feature
Requirements
Installation
Slack Webhooks
AWS IAM policies
CI/CD
Development
Code Standards
Automated Tests
Manual Tests
Conference Talks and Blog Posts

Limitations

This tool cannot guarantee 100% protection against subdomain takeovers.

Click Here To Download

Please consider following and supporting us to stay updated with the latest info

Related

Domain-Protect : Protect Against Subdomain Takeover

October 28, 2021

In "Kali Linux"

Awesome Bug Bounty Tools : Essential Functions For Hackers And Researchers

February 20, 2025

In "Cyber security"

Joomscan – OWASP Joomla Vulnerability Scanner Project

July 21, 2018

In "Kali Linux"

R K

Next PersistenceSniper - A PowerShell Tool For Blue Teams, Incident Responders & System Admin »

Previous « Metlo : An Open-Source API Security Platform

Leave a Comment

Share

Published by

R K

Tags: Domain-ProtectowaspOWASP Global AppSec Dublin

3 years ago

Recent Posts

Tutorials

Best OSINT Tools for Journalists 2026: Verify Sources, Images and Claims

Journalists use OSINT to verify public information before publishing. In 2026, misinformation, AI-generated images, fake…

7 hours ago

How To

Install Docker on Ubuntu 20.04: Complete Step-by-Step Guide

Docker is an open-source platform that lets you package and run applications inside containers. Each container…

17 hours ago

How To

Install PostgreSQL on Ubuntu: Database Setup and Admin Guide

PostgreSQL (often called Postgres) is an open-source relational database system. It supports advanced features like JSON…

18 hours ago

How To

Install Xrdp Remote Desktop on Ubuntu: Setup and Connect

Xrdp is an open-source server that lets you connect to your Ubuntu machine from another computer…

19 hours ago

How To

Tomcat 9 on Ubuntu 20.04: Install, Configure, and Start

Apache Tomcat is an open-source web server and Java servlet container. It is one of the…

19 hours ago

How To

Automatic Updates on Ubuntu: Set Up unattended-upgrades

Keeping your Ubuntu system updated is one of the best ways to protect it. Security…

20 hours ago

L