Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Owl_DNS Engine | Error Get findings #7

Closed
ST2Labs opened this issue Jul 13, 2018 · 4 comments
Closed

Owl_DNS Engine | Error Get findings #7

ST2Labs opened this issue Jul 13, 2018 · 4 comments
Assignees
@MaKyOtOx
Labels
bug Something isn't working

Comments

@ST2Labs
Copy link

ST2Labs commented Jul 13, 2018

Hi,

I'm trying to set OWL_DNS engine, but:

  • Policy Example ?

My own test with te following Policy fails:

{
  "do_advanced_whois":{
    "required":true,
    "value":"boolean"
  },
  "do_dns_resolve":{
    "required":false,
    "value":"boolean"
  },
  "do_whois":{
    "required":true,
    "value":"boolean"
  },
  "do_reverse_dns":{
    "required":false,
    "value":"boolean"
  },
  "do_subdomains_resolve":{
    "required":false,
    "value":"boolean"
  }
}

image

Thanks in advance
@MaKyOtOx
Copy link
Contributor

Hi
Here is an example of testing script (direct call the Engine API):

import json, requests, time
print("TEST CASE: test_startscan_owl_dns")

post_data = {
    "assets": [
        {
            "value":'patrowl.io',
            "datatype": "domain"
            }, {
            "value":212.32.66.58',
            "datatype": "ip"
            },
        ],
    "options": {
        "max_timeout": 3600,
        "do_subdomain_enum": False,
        "do_whois": True,
        "do_advanced_whois": False,
        "do_reverse_dns": False,
        "do_dns_resolve": False,
        "do_subdomains_resolve": False,
        "do_subdomain_bruteforce": False
    },
    "scan_id": "34"
}

r = requests.post(url='http://127.0.0.1:5006/engines/owl_dns/startscan',
           data=json.dumps(post_data),
           headers = {'Content-type': 'application/json', 'Accept': 'application/json'})

print(r.json())

@MaKyOtOx
Copy link
Contributor

In PatrowlManager, the policy will be (careful with the CaPiTaLiSaTiOn):

{
        "max_timeout": 3600,
        "do_subdomain_enum": false,
        "do_whois": true,
        "do_advanced_whois": false,
        "do_reverse_dns": false,
        "do_dns_resolve": false,
        "do_subdomains_resolve": false,
        "do_subdomain_bruteforce": false
    }

We will soon release policies for each engine.

@MaKyOtOx MaKyOtOx added bug Something isn't working doc labels Jul 13, 2018
@MaKyOtOx MaKyOtOx self-assigned this Jul 13, 2018
@ST2Labs
Copy link
Author

ST2Labs commented Jul 14, 2018
edited
Loading

Hi,

I'm using your example policy (whois), but getting the following error:

image

I havent any "results file" & log in docker logs:

image

image

Show KeyError un parse results in "owl_dns" ...

Thanks in advance

@MaKyOtOx
Copy link
Contributor

MaKyOtOx commented Aug 3, 2018

I've reproduced the issue. This error raise when you try to get WHOIS data from a subdomain name.
Nevertheless, there is no WHOIS for sub-domains. WHOIS is available for registered domains only.
Additional checks will catch the exception in the next release.

An interesting feature could be getting Whois data from extraction of the valid domain name

MaKyOtOx added a commit that referenced this issue Aug 3, 2018
@MaKyOtOx
Fix issues #5, #6 and #7
4d20d11
@MaKyOtOx MaKyOtOx closed this as completed Aug 3, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MaKyOtOx MaKyOtOx

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MaKyOtOx @ST2Labs