← LibraryTechnique entry
DNS-SUBDOMAIN-WILDCARDInitial Access
Wildcard Subdomain Hijack
Wildcard A/CNAME with no TLS pinning catches arbitrary subdomains the attacker registers in the parent zone — useful for cookie tossing across siblings.
§ Where this technique fits
DNS-SUBDOMAIN-WILDCARD is catalogued under the Initial Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.