This is a script to automate the takeover process for domains that have route53 dangling nameserver records.
Based on https://github.com/shivsahni/NSBrute
Clone the repo
$ git clone [email protected]:brunobcestari/heyjack53.git
install it using pip
$ cd heyjack53
$ pip install .
You can authenticate to your AWS account either using the aws_access_key and aws_secret_access_key (and aws_session_token if needed) or providing the profile_name for your stored credentials in ~/.aws/credentials
Use
-aor--accessfor aws_access_key-sor--secretfor aws_secret_access_key-tor--tokenfor aws_session_token
OR
-por--profilefor aws profile_name
Then you need to provide the domain to be hijacked through the -d or --domain parameter
$ heyjack53 -d example.com -p my_profile_name