A single IP address hosts multiple domain at the same time. How do I scan a single domain using nmap or other tools?
Let’s say an IP address hosts multiple domains, (example.com, example.net, example.org, etc.). How do I port scan a specific domain?
Category Archives: Domain
allowing users to add custom html/js code and show it only under another domain
I have a web app where I allow users to create a one-page portfolio using drag and drop, also I allow them to add custom HTML freely (basically any html or js code)
I’m aware that I shouldn’t allow the custom HTML to be executed while they… Continue reading allowing users to add custom html/js code and show it only under another domain
[SANS ISC] Quick Status of the CAA DNS Record Adoption
I published the following diary on isc.sans.edu: “Quick Status of the CAA DNS Record Adoption“: In 2017, we already published a guest diary about “CAA” or “Certification Authority Authorization”. I was curious about the status of this technique and the adoption level in 2020. Has it been adopted massively since
The post [SANS ISC] Quick Status of the CAA DNS Record Adoption appeared first on /dev/random.
Continue reading [SANS ISC] Quick Status of the CAA DNS Record Adoption
Is an IP not being redirected to it’s associated domain considered unsecure?
I’ve got a server that has domain and an SSL Certificate issued to that domain.
It’s expected behavior that when an IP address is browsed, it redirects to the domain name of the server and the SSL Certificate is valid. e.g:
https://ip =>… Continue reading Is an IP not being redirected to it’s associated domain considered unsecure?
.local domain any possible ways in getting the extension
I was recently working on Broken link Hijacking and found a link in a target which reflected on multiple pages. It was portal.REDACTED.local which was not accessible and returned response as bad host.
So I never saw a extension that has .l… Continue reading .local domain any possible ways in getting the extension
Is it possible for a domain to be faked?
I was talking to PayPal customer service and they were trying to tell me PayPal does not have any third parties, so when I shown them https://www.paypal.com/uk/webapps/mpp/ua/third-parties-list they responded to me that this is not a real … Continue reading Is it possible for a domain to be faked?
Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs
Cybercriminals set up three different CAPTCHAs that Office 365 targets must click through before the final phishing page. Continue reading Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs
iPhone 6 “Cannot Get Mail The mail server Imap.gmail.com is not responding. Please make sure you have added the correct account in mail settings” [closed]
Both my iPhone 6 & my Lenovo Yoga 80 with Windows 10 will not send or show new emails. Also Lenovo I cannot delete files, or copy/paste. The Lenovo was the only device taken to repair guy 8/27/2020, but I used my iPhone 6 for its hotsp… Continue reading iPhone 6 “Cannot Get Mail The mail server Imap.gmail.com is not responding. Please make sure you have added the correct account in mail settings” [closed]
What is the list of known host domains where subdomains come from different providers?
I recall that there is a list of hosting domains that are known to have subdomains from different sources, as for example wix.com and appspot.com, built into browsers. For such domains, subdomains do not inherit trust from the domain.
I fo… Continue reading What is the list of known host domains where subdomains come from different providers?
how can I find all the websites on a particular IP? [duplicate]
When I try to find websites hosted on a specific IP using one of the online Reverse IP Lookup tools, I only get one website, but when I use Sub-domain enumeration, I find several websites on the same IP
Why does this happen? And how can I … Continue reading how can I find all the websites on a particular IP? [duplicate]