Skip to content
← Back to Glossary
DNS Security Checked by Vezraa

Subdomain Takeover

Claiming an unclaimed external service pointed to by a subdomain's CNAME record.

When a CNAME record points to an external service (e.g., GitHub Pages, Vercel, AWS) that is no longer provisioned, an attacker can claim the service and host content under your domain. This enables phishing on your trusted domain.

Related Terms

See this vulnerability in the database

See if your app is vulnerable

Vezraa checks for this security issues. Scan in 25 seconds.

Subdomain Takeover — Security Glossary | Vezraa