Dangling DNS: Worksites.net
Another service vulnerable to subdomain takeover
Last updated
Was this helpful?
Another service vulnerable to subdomain takeover
Last updated
Was this helpful?
This post is the write-up about subdomain takeover vulnerable service that I found back in April 2020. Although this is a paid service, It's possible to create a PoC without having to purchase the service.
is a web service for building websites for contractors and growing businesses, which support custom domains feature.
A
record should be pointing to static IP address 69.164.223.206
I use the following template to check for possible candidates.
We should see a similar error page to verify whether the subdomain takeover may be possible.
To detect a vulnerable subdomain, we use the following fingerprint based on the HTTP response; we confirm whether the subdomain is vulnerable or not.
Go to https://app.worksites.net/website/domain-name
Set Your domain name
to subdomain we want to takeover worksites.melbadry9.xyz
Visit worksites.melbadry9.xyz
Create a screenshot as PoC. We can publish the site for $27.00 per month.
I use the following template to check for the vulnerable subdomain.
Register an account on
I opened an issue on regarding this service: