| 2979 | How I Was Able To Take Over One Of Dell’s Subdomains |
Subdomain takeover |
Dell |
Taha Bıyıklı (@tahabykl) |
Bug Bounty | 2020-12-08 | 2023-06-13 |
| 2925 | Incident Response during Christmas |
Subdomain takeover |
NA |
TMO |
Bug Bounty | 2021-01-05 | 2023-06-13 |
| 2921 | Subdomain Take Over Worth 100£ |
Subdomain takeover |
NA |
c0d3x27 (@c0d3x27) |
Bug Bounty | 2021-01-07 | 2023-06-13 |
| 2895 | How I hijacked the top-level domain of a sovereign state |
Domain takeover |
Internet Bug Bounty |
Fredrik N. Almroth (@Almroot) |
Bug Bounty | 2021-01-15 | 2023-06-13 |
| 2862 | Bragging Rights(Part 1): Short story of a bug wave |
IDOR
Stored XSS
SSRF
Subdomain takeover
Hardcoded credentials |
NA |
Manas Harsh (@ManasH4rsh) |
Bug Bounty | 2021-01-27 | 2023-06-13 |
| 2824 | How I Got An Appreciation Letter From Harvard University |
Subdomain takeover |
Harvard University |
Santosh Bobade (@Santosh88267387) |
Bug Bounty | 2021-02-10 | 2023-06-13 |
| 2821 | Fastest Subdomain Take Over & DNS Misconfiguration Hunt. |
Subdomain takeover
DNS zone transfer |
NA |
Kabeer (@iTheKabeer) |
Bug Bounty | 2021-02-10 | 2023-06-13 |
| 2798 | Sub-domain Takeover on api.techprep.fb.com (AWS Elastic Beanstalk)! |
Subdomain takeover |
Meta / Facebook |
Binit Ghimire (@WHOISbinit) |
Bug Bounty | 2021-02-16 | 2023-06-13 |
| 2731 | Dangling DNS: Amazon EC2 IPs (Current State) |
Dangling DNS records
Subdomain takeover |
8x8 |
Mohamed Elbadry (@_melbadry9) |
Bug Bounty | 2021-03-08 | 2023-06-13 |
| 2728 | Dangling DNS Records on surf-test.xwf.internet.org (Amazon EC2)! |
Subdomain takeover
Dangling DNS records |
Meta / Facebook |
Binit Ghimire (@WHOISbinit) |
Bug Bounty | 2021-03-10 | 2023-06-13 |
| 2710 | Dangling DNS: Worksites.net |
Dangling DNS records
Subdomain takeover |
NA |
Mohamed Elbadry (@_melbadry9) |
Bug Bounty | 2021-03-17 | 2023-06-13 |
| 2702 | Subdomain Takeover in AWS: making a PoC |
Subdomain takeover |
NA |
Diego Bernal Adelantado (@secfaults) |
Bug Bounty | 2021-03-20 | 2023-06-13 |
| 2551 | How i hijacked 12 Subdomains in one Program |
Subdomain takeover |
NA |
Naveen kumawat (@nvk0x) |
Bug Bounty | 2021-05-17 | 2023-06-13 |
| 2520 | CafeBazaar and Subdomain Takeover |
Subdomain takeover |
CafeBazaar |
Sina Kheirkhah (@SinSinology) |
Bug Bounty | 2021-05-29 | 2023-06-13 |
| 2452 | Flywheel Subdomain Takeover |
Subdomain takeover |
NA |
Smaran Chand (@smaranchand) |
Bug Bounty | 2021-06-24 | 2023-06-13 |
| 2374 | How I earned $$$$ by Amazon S3 Bucket misconfigurations? |
AWS misconfiguration
Subdomain takeover |
NA |
Abdullah Mohamed (@3bodymo_) |
Bug Bounty | 2021-07-29 | 2023-06-13 |
| 2322 | Second Order Subdomain Takeovers – They DO Exist! |
Subdomain takeover
Broken link hijacking |
Microsoft |
Alun Jones (@ftp_alun) |
Bug Bounty | 2021-08-15 | 2023-06-13 |
| 2317 | Dangling DNS: Announcekit |
Subdomain takeover |
NA |
Mohamed Elbadry (@_melbadry9) |
Bug Bounty | 2021-08-16 | 2023-06-13 |
| 2310 | How I found my first Subdomain Takeover vulnerability |
Subdomain takeover
CSRF |
NA |
Monish Basaniwal |
Bug Bounty | 2021-08-20 | 2023-06-13 |
| 2278 | How MarkMonitor left >60,000 domains for the taking |
Subdomain takeover |
NA |
Ian Carroll (@iangcarroll) |
Bug Bounty | 2021-08-29 | 2023-06-13 |
| 1893 | HOW I hacked thousand of subdomains |
Subdomain takeover |
NA |
MoSec (@moe1n1) |
Bug Bounty | 2022-01-25 | 2023-06-13 |
| 1829 | Subdomain Takeover via Leadpages Services on Tiktok |
Subdomain takeover |
TikTok |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2022-02-11 | 2023-06-13 |
| 1821 | My First Bounty and How I Got It |
Subdomain takeover |
NA |
Aneesha D (@interc3pt3r) |
Bug Bounty | 2022-02-14 | 2023-06-13 |
| 1807 | Recon and YouTube, is that a thing? |
Subdomain takeover |
NA |
Marcos IAF / Rohit (@marcos_iaf) |
Bug Bounty | 2022-02-17 | 2023-06-13 |
| 1802 | Passive Recon with Spyse (Part-II) |
Subdomain takeover
AWS misconfiguration |
NA |
remonsec (@remonsec) |
Bug Bounty | 2022-02-19 | 2023-06-13 |
