HACKERS ARE HIJACKING WEBSITES! // Subdomain and DNS Takeover

Purchase my Bug Bounty Course here 👉🏼 bugbounty.nahamsec.training 👀 👀 👀 Signup and use Snyk for free: snyk.co/NahamSec Hackers are hijacking websites and replacing its content with whatever they want. it's not just due to third party services, it's as far as taking over the entire zone through Microsoft Azure or Amazon's Route53! Buy Me Coffee: https://www.buymeacoffee.com/nahamsec Live Every Sunday on Twitch:   / nahamsec   Free $100 DigitalOcean Credit: https://m.do.co/c/3236319b9d0b Follow me on social media:   / nahamsec     / nahamsec   https://twitch.com/nahamsec https://hackerone.com/nahamsec   / nahamsec1   Github: https://github.com/nahamsec Nahamsec's Discord: https://discordapp.com/invite/ucCz7uh 00:00 - Intro 0:25 - Ferrari Hack 1:33 - What Can I Takeover? 2:21 - Snyk Sponsored Ad 3:25 - Understanding NS Takeovers 6:16 - Using dig to Get More Information 8:00 - Taking Over A Zone 8:55 - Creating A Proof of Concept 10:05 - Confirming Our POC #bugbounty #offensivesecurity #redteam #hackerone #hackers #hacking #infosec #hackingtutorial #owasp #educational #owasptop10

Join Today
What Should You Do After Recon?!
▶︎

What Should You Do After Recon?!

RAW videos from REAL hackers
▶︎

RAW videos from REAL hackers

FIFN Demo
▶︎

FIFN Demo

The Dark Web EXPOSED (FREE + Open-Source Tool)
▶︎

The Dark Web EXPOSED (FREE + Open-Source Tool)

What is DNS? Introduction to Domain Name System. SXSW giveaway!
▶︎

What is DNS? Introduction to Domain Name System. SXSW giveaway!

Subdomain Takeover | Bug Bounty Explained
▶︎

Subdomain Takeover | Bug Bounty Explained

subdomain takeover (stealing websites)
▶︎

subdomain takeover (stealing websites)

I Hacked This Temu Router. What I Found Should Be Illegal.
▶︎

I Hacked This Temu Router. What I Found Should Be Illegal.

This Open-Source AI Agent Can Do Penetration Testing… Should Hackers Be Worried?- My Opinion
▶︎

This Open-Source AI Agent Can Do Penetration Testing… Should Hackers Be Worried?- My Opinion

How to Bug Bounty
▶︎

How to Bug Bounty

How to Discover High-Paying IDOR Bugs in Real Apps?
▶︎

How to Discover High-Paying IDOR Bugs in Real Apps?

find HIDDEN urls!! (subdomain enumeration hacking) // ft. HakLuke
▶︎

find HIDDEN urls!! (subdomain enumeration hacking) // ft. HakLuke

OSINT tools to track you down. You cannot hide (these tools are wild)
▶︎

OSINT tools to track you down. You cannot hide (these tools are wild)

[Part I] Bug Bounty Hunting for IDORs and Access Control Violations
▶︎

[Part I] Bug Bounty Hunting for IDORs and Access Control Violations

Former CIA Officer: How to Find Anyone's Exact Location Online
▶︎

Former CIA Officer: How to Find Anyone's Exact Location Online

DEF CON 32 - From getting JTAG on the iPhone 15 to hacking Apple's USB-C Controller - Stacksmashing
▶︎

DEF CON 32 - From getting JTAG on the iPhone 15 to hacking Apple's USB-C Controller - Stacksmashing

Counter-Surveillance Using Bluetooth!
▶︎

Counter-Surveillance Using Bluetooth!

How to Hack Website Subdomain | Takeover Vulnerability Explained
▶︎

How to Hack Website Subdomain | Takeover Vulnerability Explained

The Biggest Hacking Mystery of Our Time: Shadow Brokers
▶︎

The Biggest Hacking Mystery of Our Time: Shadow Brokers

Insecure Direct Object Reference / IDOR Explained // How to Bug Bounty
▶︎

Insecure Direct Object Reference / IDOR Explained // How to Bug Bounty