IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [sub-domain]

The domain name system tree structure or DNS hierarchy has a root domain at the top and all the child nodes in the tree are called sub-domains.

Basically a sub-domain in a domain that is a part of a larger domain. e.g. a.mysite.com and b.mysite.com are sub-domains of mysite.com which is a sub-domain of a top level domain .com

67 questions
0
votes
2 answers

Subdomain-only SSL security/availability

CAcert and StartSSL both only validate domains whose TLD is owned by the requester. I have a few subdomains that come from places like freeDNS that I would like to run an SSL-secured server on. Are there any CAs that offer this service for free,…
bright-star
  • 147
  • 5
0
votes
1 answer

What are the security issues with setting cookies for subdomains?

Everywhere I look, I only find explanations as to who can set who's cookies and who can access the cookies of whom. Why do we need these restrictions? More precisely: Why is it OK for a subdomain to set a cookie for a parent domain? Why is it not…
GalSuchetzky
  • 113
  • 5
0
votes
1 answer

How does msnbot keep finding my unpublished admin url?

I am a website developer (mainly using MVC.NET). Recently, we have been contacted by a hacker. He claimed that he knows our admin URL. The problem is we do not publish or put the admin URL anywhere on our webpage. The only place where the URL is…
Sam
  • 109
  • 1
0
votes
1 answer

Prevent client access being the same as admin access in web application

My colleagues and I are developing a public web application with client and admin access. I'm concerned about security, being the application public. I would like to add every layer, as long as it's useful and really provides security. I thought…
schrodingerscatcuriosity
  • 101
  • 3
0
votes
1 answer

Can I escalate a main domain SSTI/RCE to all the subdomains belonging to that domain?

I'm a newbie ethical hacker and bug bounty hunter. Lets, assume my target is somethingtohack.com, the thing is the company's scope defines that the main domain is out of scope, but subdomains like subdomain.somethingtohack.com are in scope, and…
Offensive Bug Hunter
  • 3
  • 1
0
votes
2 answers

Port scanning against assets that are behind a WAF

I am trying to automate my recon process. For port scanning, I resolve subdomains to IPs then loop over those IPs with masscan. But is it worth it to port scan an asset that is hidden behind a web firewall? In other words, by doing this I'm scanning…
Sinatra
  • 1
  • 1
0
votes
2 answers

Can subdomains of trusted domains be registered for malicious use?

I was working on a rule that reports phishing sites, and I wanted to exclude known domains, such as .microsoft.com etc, and a doubt arose: can someone register a subdomain of a known site to phishing purposes? I came across this article, where there…
Pleasant94
  • 103
  • 1
0
votes
1 answer

Can attack to a website from a parked subdomain with different hosts?

I have a website like maindomain.com that is hosted on one IP address like 192.168.1.1. I want to add a subdomain from a different host (such as 192.168.1.2) to my root domain (maindomain.com), such that the address will be like…
Mister X
  • 101
0
votes
1 answer

Cookie domain security

Recently, I started diving into cookies, but as far as the domain property is concerned I don't think it is straightforward. I read this…
Maikkeyy
  • 187
  • 7
0
votes
0 answers

Are there any risks selling subdomains?

I am considering buying a nice domain name (say example.com) and would be interested in reselling subdomains (e.g. chris.example.com) to third parties (or close friends). I would give them full control over the zone via the use of NS…
Chris Smith
  • 222
  • 2
  • 9
0
votes
1 answer

nmap: Same IP, different domain names, different results?

I'm scanning a network (whose name will not be stated). It has >1 IP addresses. When I tried scanning its subdomains, there are several subdomains that are translated to the same IP address but return different scan reports (like different ports…
ChocolateOverflow
  • 3,452
  • 4
  • 17
  • 34
0
votes
1 answer

can an attacker exploit my main site from subdomain?

I have an app that was in a folder on my main site's root directory www.example.com/app which was recently hacked and the entire website was offline because the server load was too high and the database was corrupted somehow. Now, before I find the…
Sergiu Elmi
  • 103
  • 2
0
votes
0 answers

Is it possible to extract data from api response from main domain?

I found an XSS on subdomain.example.com, is it possible to use that xss to extract the response of an api request from the main domain example.com/api/xyz? The xss is on subdomain.example.com and I'd like to extract the whole response of…
stack ups
  • 19
  • 1
0
votes
1 answer

setting up ssl for cname only subdomain

I've looked on for an answer on google and other forums for this question but couldn't get a solution or a hint for the scenario that I have. I've a domain, say abc.com, which is live with ssl on wpengine. Now we need to show a third party login…
Anas Ahmed Khan Niazi
  • 11
  • 2
0
votes
1 answer

Subdomain Scan protection

I have seen that all our subdomains can be eaisly be scanned with help of websites like dnsdumpster. What is the best way to protect subdomains of any website from getting scanned or revealed via sites like dnsdumpster. Even if we add it in…
Anant Bhandarkar
  • 101
  • 2
1 2 3
4
5