Security Test: Domain Takeover¶
Description¶
Default Severity:
Domain takeover happens when attackers gain control of a domain because it's not properly managed, often due to expired services or misconfigured DNS settings. This lets an attacker redirect traffic or impersonate the legitimate site, which can lead to data theft or other harmful actions. Developers often overlook regular checks on domain configuration, fail to monitor expiration dates, or underestimate shifts in subdomain configurations, all of which can leave this vector open to exploitation.
Configuration¶
Identifier:
configuration/domain_takeover
Examples¶
All configuration available:
Compliance and Standards¶
| Standard | Value |
|---|---|
| OWASP API Top 10 | API8:2023 |
| OWASP LLM Top 10 | LLM05:2023 |
| PCI DSS | 6.1 |
| GDPR | Article-32 |
| SOC2 | CC9 |
| PSD2 | Article-95 |
| ISO 27001 | A.12.6 |
| NIST | SP800-81-2 |
| FedRAMP | SC-20 |
| CWE | 284 |
| CVSS Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
| CVSS Score | 3.0 |