子域接管工具
Kickdomain的Python项目详细描述
Kickdomain
Kickdomain是一个子域接管检查工具
用法
pip安装kickdomain
将fb访问令牌添加到config.py中
或
export fb_access_token=your_access_token(在此处获取访问令牌-https://developers.facebook.com/tools/explorer/)
将FB_ACCESS_令牌添加到.bashrc文件中
source.bashrc
仅枚举子域
kickdomain.py-u target.com网站
启用接管检查
kickdomain.py-u target.com-t 1
将Kickdomain用作模块
import kickdomain
subdomains=kickdomain.getSubdomains('target.com')
results=kickdomain.takeover_check(subdomains)
for i in results:
if i[1]:
print(i[0]+' vulnerable to Takeover')
else:
print(i[0]+' not vulnerable to Takeover')