Feature Update: Dangling DNS Record and Detection of Sub-Domain Takeover Vulnerabilities

Dangling DNS issues arise when a DNS record is configured to point to a nonexistent or inactive external resource that an attacker could take ownership of (e.g., by registering a subdomain)

Successful exploitation of this kind of vulnerability allows an adversary to claim and take control of parts or the entirety of the victim’s infrastructure. If the attacker succeeds in taking over a subdomain for example, a wide variety of attacks are possible, including serving malicious content, phishing, stealing user session cookies and other credentials.