QuestionsCategory: Bug BountyAws Subdomain takeover
Turpo asked 2 weeks ago

I followed your tutorial and tried to takeover aws subdomain. when I added domain name, it created the bucket so I followed your video but index page didn’t publish so I try to do same procedure with the cname. When I try to create bucket with the cname, it says already exist.
 
Please provide the website code as well

5 Answers
admin Staff answered 2 weeks ago

if it says already exists it means it’s not vulnerable

admin Staff answered 2 weeks ago
here is the code 

{
"Version": "2012-10-17",
"Id": "Policy1548223592786",
"Statement": [
{
"Sid": "Stmt1548223591553",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::yourdomain.com/*"
}
]}
admin Staff answered 2 weeks ago
here is the code 

{
"Version": "2012-10-17",
"Id": "Policy1548223592786",
"Statement": [
{
"Sid": "Stmt1548223591553",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::yourdomain.com/*"
}
]}
admin Staff answered 2 weeks ago
here is the code 

{
"Version": "2012-10-17",
"Id": "Policy1548223592786",
"Statement": [
{
"Sid": "Stmt1548223591553",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::yourdomain.com/*"
}
]}
admin Staff answered 2 weeks ago
here is the code 

{
"Version": "2012-10-17",
"Id": "Policy1548223592786",
"Statement": [
{
"Sid": "Stmt1548223591553",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::yourdomain.com/*"
}
]}
Your Answer