Collaborate Disseminate
Currently my domain is sitting without DNSSEC security because my domain provider didnt support it for my ccTLD domain, the feature will only be available once i renew my domain in about 2 months time.
As you can maybe guess, i am a vitcim… Continue reading How to stop/reduce constant DNS Spoof/Poisoning Attack from NGINX server if DNSSEC is not offered from provider?
I know all baseline steps to do DNS enumeration over a domain. But my questions is: how can I enumerate a server when I do not know which domain it is managing and I only have its IP address?
My scenario: I discovered 2 DNS servers running… Continue reading DNS Enumeration by IP Address
What top-level domains (TLD) are safe and would be safe for example to whitelist?
I guess .gov and .mil are safe?
While .com, .net and .org are not since anyone can register those.
Is .int safe? And is this TLD actually used?
I know there … Continue reading What TLDs are safe to whitelist?
When I type in PowerShell
ping security.stackexchange.com
…it gives me the following:
Pinging security.stackexchange.com [151.101.193.69]
And as far as I understand, this IP address corresponds to domain name security.stackexchange.com …. Continue reading Why can’t I connect to a website via its IP address?
I’m looking for some domain name whose purpose is to act as a bogus malicious/suspicious/untrusted website or endpoint to be used as an example or in documentation.
IANA has reserved example.com for general purpose, is there an "evil&… Continue reading Is there any domain name one could use as a fake malicious website example?
My Web API acts as a proxy for users to connect to another server: User ➡️ My Server ➡️ Any Internet Server. They do that by specify a hostname ftp.example.com or 111.111.111.111. I do not want them to mess with my own server by entering l… Continue reading Blacklist of hostname/IP so user cannot access my server private network?
Digicert has disallowed "double dashes" in the third and fourth characters in new certs:
Effective October 1, 2021, for publicly trusted TLS/SSL certificates, we no longer allow the use of double dashes (–) in the third and fou… Continue reading Why are SSL CAs prohibiting double dash in third and fourth characters?
It’s been my understanding in the past years that it’s not easily possible to find out all the subdomains of a domain (unless these are used publicly, like in hyperlinks, etc), and likewise not easily possible to find all domains/submains … Continue reading All private subdomains found and listed, including those from my home IP
Recently, I noticed that when I set my site’s IP with a host domain name header, it easily passes through Cloudflare in Curl’s request, but I checked this for other sites, it does not pass and it encounters Cloudflare
Is there a problem wi… Continue reading how prevent bypass cloudflare
When enumerating a site on a Bugcrowd program, I found a subdomain like this:
According to the hackerone report it was classified as a valid report. In my case, they ask for proof. How can I successfully takeover it? I tried using Github… Continue reading Exploiting Subdomain Takeover on Cloud Front [closed]