-
Notifications
You must be signed in to change notification settings - Fork 35
/
template.txt
34 lines (24 loc) · 1.17 KB
/
template.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
# Summary
The domain _target_ was found to have a CNAME that was pointing to an unregistered domain.
It was possible to register this domain, and to host content on the _target_ website. Given this domain is attributed to _program_(see: attribution) I hosted only a SHA256 string of my researcher account, _researcher).
This can be verified by using the following in the terminal:
```
echo "_username_" | sha256sum
```
Which should present the resulting string:
```
_sha_
```
Which matches what I placed on _target_ for verification.
This has also been stored on the Wayback engine, in case this is resolved before this submission is able to be triaged: _wayback_
# Attribution
A whois of the domain _target_ shows a direct match to other domains relating to _program_, showing this as beloning to _program_:
```
_whois_
```
# Recommendation
Remove the CNAME associated with _target_, or decomission the domain entirely with a redirection to other domains of _program_. If you would like the domain I've claimed to be transferred to you, please don't hestitate to request it within this submission.
# Joke
Triage is a tough gig, here's a joke to lighten the load!
_joke_
... _punchline_