Vulnerability Insights

Dangling Subdomains

Scanning to detect subdomains that are misconfigured and can be hijacked by attackers to host malicious content under your trusted domain.

Key capabilities

CNAME orphan detection

Identifies subdomains with CNAME records pointing to decommissioned services (e.g., old cloud instances, retired SaaS tools) that attackers can claim.

DNS record validation

Verifies that every subdomain DNS record resolves to infrastructure you still control, flagging orphaned records.

Cloud service correlation

Cross-references subdomain targets with major cloud providers (AWS, Azure, GCP) to detect claimable resources.

Takeover risk scoring

Rates each dangling subdomain by the ease of exploitation, helping your team prioritise cleanup of the highest-risk records.

Why it matters

Subdomain takeover allows attackers to serve malicious content from your trusted domain, bypassing email security, cookie scopes, and customer trust.

More Vulnerability Insights capabilities

IP Discovery & Open Port Scanning Passive Vulnerability Assessment Expired SSL Certificates Vulnerable SSL Certificates Outdated Web Technologies Email Security & Spoofing View all Vulnerability Insights capabilities →

See Dangling Subdomains in action

Book a personalised demo and we'll walk you through this capability in the context of your own environment.