What we analyze
Forgotten or misconfigured subdomains are one of the most common attack vectors. An exposed development subdomain, a staging server with default credentials, or a forgotten admin panel can compromise the entire organization. We use multiple professional tools to discover all subdomains associated with your domain.
Tools used
Subfinder
Passive discovery via public APIs from Shodan, VirusTotal, SecurityTrails and 40+ sources.
Amass
Advanced enumeration with ASN information, IP ranges and SSL certificate scraping techniques.
HTTPX
Verification of active HTTP services on each discovered subdomain, detecting technologies and response codes.
DNS Enumeration
Zone transfers, wildcard records, and common pattern searches (dev, staging, admin, api).
Why is it important?
Many security breaches start with forgotten subdomains. An attacker can find a dev.yourcompany.com subdomain with an old version of the application, or an admin.yourcompany.com with default credentials. These "forgotten" assets represent backdoors that are often not monitored or updated.
Impact if not controlled
- Exposed development subdomains with default credentials
- Forgotten admin panels without authentication
- Legacy services without security patches
- Staging servers with real production data
- Internal APIs publicly exposed
What does the report include?
You will receive a complete list of all discovered subdomains with detailed information:
Data for each subdomain
| Field | Description |
|---|---|
| HTTP Status | Active (200), Inactive, Redirected (301/302), Error (4xx/5xx) |
| Technologies | CMS, frameworks, web servers and detected versions |
| Open ports | List of ports and services associated with the subdomain |
| Risk level | Classification: Critical, High, Medium or Low |
| Recommendation | Suggested action: remove, update, restrict access, etc. |
Critical entry points
We identify especially sensitive subdomains: admin panels, APIs, development environments.
Forgotten subdomains
We detect abandoned subdomains that could be targets for takeover or exploitation.