Subdomain Takeover at course.oberlo.com via kajabi services https://hackerone.com/reports/1690951 --------------------------------------------------------- Video : https://youtu.be/MWKKijndQMY --------------------------------------------------------- Example of this takeover school.privy.com ( Already reported to privy.com security ) FingerPrint As screenshot : The page you were looking for doesn't exist. You may have mistyped the address or the page may have moved. Steps To Takeover : 1) Create account on kajabi.com with trial membeship 2) Go to https://app.kajabi.com/admin/sites/youraccountnum/website_designs and Create a custom page 3) then Publish custom page on your custom cname ( username.mykajabi.com ) 4) go to https://app.kajabi.com/admin/sites/youraccountnum/custom_domain and click on setup custom domain 5) Choose ( Create subdomain for kajabi site ) & in domain name add ( site.com ) and in subdomain ( subdomain ) then click next 6) wait 5 min to connect subdomain with your website. 7) Now You will get this Subdomain Takeover. ----------------------------------------------------------------------- Impact : Subdomains Takeovers can be use in many things : Malware Phishing / Spear phishing XSS Authentication bypass Open Redirects True access .. etc