← Back to Skills Marketplace
hostilespider

Subdomain Takeover Checker

by HostileSpider · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
325
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install subdomain-takeover
Description
Check subdomains for potential takeover vulnerabilities. Detects dangling DNS records pointing to unclaimed services (GitHub Pages, Heroku, AWS, etc.)
Usage Guidance
This skill is coherent with its stated purpose, but check these before installing: (1) The script uses curl for HTTP verification but curl is not declared in the metadata—ensure curl is available on the host. (2) The tool performs network scans of domains you supply; avoid scanning domains you don't have permission to test (legal/ethical risk). (3) Expect false positives because the script uses simple substring matching of CNAMEs and treats HTTP timeouts/404s as potentially claimable. (4) If you will run this in an automated agent, run it in an environment with controlled network access and review output files before sharing. If you need stronger verification, consider enhancing the script to use provider-specific claim checks or safer heuristics.
Capability Analysis
Type: OpenClaw Skill Name: subdomain-takeover Version: 1.0.0 The skill is a legitimate security utility designed to identify dangling DNS records (subdomain takeover vulnerabilities). The core logic in `scripts/check-takeover.sh` uses standard tools like `dig` and `curl` to verify CNAME records against a list of known vulnerable services (e.g., GitHub Pages, Heroku, AWS). There is no evidence of data exfiltration, malicious execution, or prompt injection intended to subvert the agent's behavior.
Capability Assessment
Purpose & Capability
Name/description (subdomain takeover checking) align with the provided script: it uses dig to resolve records and (optionally) curl to verify HTTP responses. The tool requires only standard CLI utilities to perform DNS and HTTP checks, which is proportional to the stated purpose.
Instruction Scope
SKILL.md instructs the agent to run the included bash script against a list or single subdomain and documents options (passive, json, timeout, output). The script performs DNS resolution and optional HTTP requests only against the user-supplied domains. It does not read unrelated files, environment variables, or exfiltrate results to external endpoints. Note: the script uses curl for HTTP checks but curl is not declared in the skill metadata as a required binary.
Install Mechanism
There is no install spec and the skill ships as a small local bash script plus SKILL.md. No network downloads or archive extraction are performed during installation, which is low risk.
Credentials
The skill requests no environment variables, no credentials, and no config paths. The script does not read secrets or external configs. This is proportionate to the tool's purpose.
Persistence & Privilege
The skill is not set to always:true and does not attempt to modify other skills or system-wide settings. It runs on-demand and exits with an appropriate code indicating findings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install subdomain-takeover
  3. After installation, invoke the skill by name or use /subdomain-takeover
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release — Detect dangling DNS records
Metadata
Slug subdomain-takeover
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Subdomain Takeover Checker?

Check subdomains for potential takeover vulnerabilities. Detects dangling DNS records pointing to unclaimed services (GitHub Pages, Heroku, AWS, etc.). It is an AI Agent Skill for Claude Code / OpenClaw, with 325 downloads so far.

How do I install Subdomain Takeover Checker?

Run "/install subdomain-takeover" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Subdomain Takeover Checker free?

Yes, Subdomain Takeover Checker is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Subdomain Takeover Checker support?

Subdomain Takeover Checker is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Subdomain Takeover Checker?

It is built and maintained by HostileSpider (@hostilespider); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments