We did this for a customer and to see what leaks. It’s very surprising and sometimes very bad from a security perspective on popular and high traffic domains of service providers.
I remember when this hit HN a few months(?) back, for me it was the first time learning about this and I assumed this might be an obscure thing.
I ran the python script against my (very large) employer's domain name and was pleasantly surprised to see we owned all the bitsquatted versions already (there were maybe 10?)
I recall reading a story about someone who became legendary among squatters because he somehow managed to negotiate the rights to commercialize Colombia's TLD (.co), meaning he positioned himself to take a cut of every .com -> .co typosquat ever.
Here's the guy himself talking about it in a NYT article[0]
it worked for that person because gmail.com is a hugely popular domain and they had gail.com before gmail was even created. nowadays much more competitive