Skip to content

Configuration: Domain Takeover

Identifier: domain_takeover

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner

Description

Domain takeover happens when attackers gain control of a domain because it's not properly managed.

This issue is often due to expired services or misconfigured DNS settings.

This issue lets an attacker redirect traffic or impersonate the legitimate site, which can lead to data theft or other harmful actions.

Developers often overlook regular checks on domain configuration, fail to monitor expiration dates, or underestimate shifts in subdomain configurations, all of which can leave this vector open to exploitation.

Configuration

Example

Example configuration:

---
security_tests:
  domain_takeover:
    assets_allowed:
    - DNS
    - WEBAPP
    skip: false

Reference

assets_allowed

Type : List[AssetType]*

List of assets that this check will cover.

skip

Type : boolean

Skip the test if true.