Skip to content

Latest commit

 

History

History
54 lines (30 loc) · 884 Bytes

README.md

File metadata and controls

54 lines (30 loc) · 884 Bytes

kickdomain

Kickdomain is a subdomain takeover checker tool

Usage

pip install kickdomain

add fb access token into config.py

or

export FB_ACCESS_TOKEN=your_access_token (get your access token here - https://developers.facebook.com/tools/explorer/)

or

add FB_ACCESS_TOKEN into .bashrc file

source .bashrc

Enumerate Subdomains only

kickdomain.py -u target.com

Enable Takeover check

kickdomain.py -u target.com -t 1

Enable Port scan for each subdomain

kickdomain.py -u target.com -p 1

Use kickdomain as a module

import kickdomain

subdomains=kickdomain.getSubdomains('target.com')

results=kickdomain.takeover_check(subdomains)

for i in results:
    if i[1]:

        print(i[0]+' vulnerable to Takeover')

    else:

        print(i[0]+' not vulnerable to Takeover')

Sources to be implemented https://spyse.com/ API https://riddler.io/ API