Take-Over is a Go-based tool designed to detect subdomain takeover vulnerabilities across different Cloud Service Providers (CSPs).
https://github.com/realrenatto/take-over.git
cd take-overLinux/macOS:
go mod tidy
go build -o take-over .Windows:
go mod tidy
go build -o take-over.exe .| Flag | Description |
|---|---|
-u, --url |
Target URL/host to scan. |
-l, --list |
Path to file containing a list of target URLs/hosts to scan (one per line). |
-c, --concurrency |
Maximum number of targets to be executed in parallel (default 10). |
-o, --output |
Output file to write found vulnerabilities. |
-v, --verbose |
Show both vulnerable and non-vulnerable subdomains. |
-h, --help |
Show help. |
You must specify at least one of the following flags:
-u, --url — Target URL/host to scan.
-l, --list — Path to a file containing a list of target URLs/hosts to scan (one per line).
take-over -u example.example.comtake-over -l list.txtThe file must contain one target per line:
http://example.example.com
m.facebook.com
https://ishouldnotexist.wordpress.com
By default, Take-Over displays only vulnerable subdomains.
To display both vulnerable and non-vulnerable results, use the verbose flag:
take-over -l list.txt -v