NSBrute
NSBrute is a Python utility designed to identify and exploit domains vulnerable to AWS NS (Name Server) takeover attacks. The tool automates the process of discovering misconfigured DNS settings where domain name servers point to AWS resources that are no longer active or properly configured. This creates an opportunity for attackers to register the abandoned AWS resources and gain control over the domain's DNS resolution. NSBrute operates by scanning target domains and checking for vulnerable NS configurations that could allow unauthorized takeover of DNS control. The utility focuses specifically on AWS-hosted name servers that may have been decommissioned or improperly configured, leaving domains susceptible to subdomain takeover attacks. The tool is implemented in Python and provides functionality for security researchers and penetration testers to assess domain configurations for potential NS takeover vulnerabilities in AWS environments.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Explore the top million websites, ranked by referring subnets, and gain insights into online influence and popularity.
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
Interactive online malware sandbox for real-time analysis and threat intelligence
An Azure Function that validates and relays Cobalt Strike beacon traffic based on Malleable C2 profile authentication.
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
Parrot Security OS is a comprehensive, secure, and customizable operating system for cybersecurity professionals, offering over 600+ tools and utilities for red and blue team operations.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.