fingerprint addition needed

[GDATTACKER-RESEARCHER]

can you update these fingerprints sir.

EdOverflow/can-i-take-over-xyz#160

EdOverflow/can-i-take-over-xyz#166

EdOverflow/can-i-take-over-xyz#142

EdOverflow/can-i-take-over-xyz#145

EdOverflow/can-i-take-over-xyz#147

EdOverflow/can-i-take-over-xyz#150

[PushpenderIndia]

Thanks for requesting to add these fingerprints!

Can you confirm, whether these fingerprints and there CNAME values are correct or not !

Item Order In Fingerprint Lists is :

• engine
• status
• cname_list
• fingerprint

f57 = [
        "ReadTheDocs.org",
        "Vulnerable",
        ["readthedocs.io"],
        "is unknown to Read the Docs"
    ] 

f58 = [
        "LeadPages.com",
        "Vulnerable",
        ["custom-proxy.leadpages.net", "leadpages.net"],
        "Double check that you have the right web address and give it another go!</p>"
    ] 

f59 = [
        "Worksites.net",
        "Vulnerable",
        ["NOT_AVAILABLE"],
        "Hello! Sorry, but the website you&rsquo;re looking for doesn&rsquo;t exist."
        ## A Record IP ==> 69.164.223.206
    ] 

f60 = [
        "AgileCRM",
        "Vulnerable",
        ["cname.agilecrm.com", "agilecrm.com"],
        "Sorry, this page is no longer available."
    ] 

f61 = [
        "ElasticBeanstalk_AWS_service",
        "Vulnerable",
        ["elasticbeanstalk.com"],
        "" #No Fingerprint Available
    ] 

f62 = [
        "Uberflip",
        "Vulnerable",
        ["read.uberflip.com", "uberflip.com"],
        "Non-hub domain, The URL you've accessed does not provide a hub. Please check the URL and try again."
    ] 

[GDATTACKER-RESEARCHER]

1. bro can you provide a update command for the script directly.
2. i am not sure about vulnerable cname entry required for vulnerable leadpages entries.
3. can you update the serials of service fingerprint in fingerprints.py.
4. bro many services are still not added you can find those in can i takeover xyz issues list.

[PushpenderIndia]

Yes for sure! I will soon add this update feature, whenever i will be free. And are you talking about rearranging newly added fingerprints in ascending order ? If yes then it is also on the way. Little bit busy due to personal work. And could you please do a favor, by searching those unknown fingerprints, from the issue section. Just start a new issue or post the new fingerprints in this issue only. Required Things : 1. Engine 2. Status (Vulnerable/Not Vulnerable/Edge Case) 3. CNAME record value List 4. Fingerprint

…

On Fri, 4 Sep, 2020, 8:16 PM The Mysterious Cyber Warriors, < ***@***.***> wrote: 1. bro can you provide a update command for the script directly. 2. i am not sure about vulnerable cname entry required for vulnerable leadpages entries. 3. can you update the serials of service fingerprint in fingerprints.py. 4. bro many services are still not added you can find those in can i takeover xyz issues list. — You are receiving this because you commented. Reply to this email directly, view it on GitHub <#2 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ANORYIQUW6WAX2VG4OIFKN3SED4V5ANCNFSM4QUM2HVA> .

[GDATTACKER-RESEARCHER]

1. microsoft azure takeover need more cname entries to be added in fingerprint file.

EdOverflow/can-i-take-over-xyz#35

2. kinsta takeover need to be added
   Subdomain Takeover through Kinsta EdOverflow/can-i-take-over-xyz#48

3)animaapp takeover need to be added
EdOverflow/can-i-take-over-xyz#126

4. frontify takeover need to be added
   Frontify EdOverflow/can-i-take-over-xyz#122

5. landingi
   Subdomain Takeover Possible via Landingi EdOverflow/can-i-take-over-xyz#117

6. Helprace
   Subdomain takeover via Helprace EdOverflow/can-i-take-over-xyz#115

7. canny
   Subdomain takeover via canny.io EdOverflow/can-i-take-over-xyz#114

8. airee
   Subdomain Takeover via Airee.ru EdOverflow/can-i-take-over-xyz#104

9. ngrok takeover
   subdomain takeover via ngrok service EdOverflow/can-i-take-over-xyz#92

10. launchrock takeover
    Subdomain takeover via LaunchRock EdOverflow/can-i-take-over-xyz#74

11. Bigcartel
    Bigcartel service subdomain takeover EdOverflow/can-i-take-over-xyz#158

[PushpenderIndia]

Bigcartel's Fingerprints are already added

• Added more CNAME records for microsoft azure

I'm unable to find CNAME of Kinsta & Anima & also Kinsta's fingerprints are not available.
Please try to find it and post it here.

And I think Kinsta's Subdomain Takeover is a Edge Case.

Please Verify whether, these info are correct or not, Upper Lower case could also leads to false positive.

Kinsta
Edge Case
[""]
""
# Here is the response from kinsta for orphan CNAME.
# 404 Not Found
# Content-Length=[33604]
# Server = kinsta-nginx

Anima
Vulnerable
[""]
"Missing Website"
"If this is your website and you've just created it, try refreshing in a minute"
# A record : 35.164.217.247

Frontify
Vulnerable
["frontify.com"]
"404 - Page not found. Oops... look like you got lost."

Landingi
Vulnerable
["cname.landingi.com"]
A Record : 174.129.25.170
"<h1>It looks like you’re lost...</h1>"
"<p>The page you are looking for is not found.</p>"

Helprace
Vulnerable
["helprace.com"]
"Alias not configured!"
"Admin of this Helprace account needs to set up domain alias"

Canny.io
Vulnerable
["cname.canny.io"]
"Company Not Found"
"There is no such company. Did you enter the right URL?"

Airee.ru 
Vulnerable
["cdn.airee.com", "airee.com"]
"Ошибка 402. Сервис Айри.рф не оплачен"
"Сайт xyz.xyz.ru. , на который вы заходите, не оплатил сервис Айри.рф. Доступ к сайту временно невозможен."

Ngrok
Vulnerable
["ngrok.io"]
"ngrok.io not found"

LaunchRock
Vulnerable
["launchrock.com"]
"It looks like you may have taken a wrong turn somewhere. Don't worry...it happens to all of us."
A Record :
54.243.190.28
54.243.190.39
54.243.190.47
54.243.190.54

I will also, soon going to add Header & A record Check,

& Auto Update feature is on the way : )