Skip to content

Commit

Permalink
Asynchronously perform nearby reverse IP lookups
Browse files Browse the repository at this point in the history
  • Loading branch information
@mschwager
mschwager committed Feb 13, 2018
1 parent 611f833 commit 946d67e
Show file tree
Hide file tree
Showing 2 changed files with 92 additions and 8 deletions.
34 changes: 26 additions & 8 deletions fierce/fierce.py
View file
Original file line number Diff line number Diff line change
@@ -1,9 +1,11 @@
#!/usr/bin/env python3

import argparse
import concurrent.futures
import functools
import http.client
import ipaddress
import itertools
import os
import pprint
import random
Expand Down Expand Up @@ -152,17 +154,27 @@ def search_filter(domains, address):


def find_nearby(resolver, ips, filter_func=None):
reversed_ips = {str(i): reverse_query(resolver, str(i)) for i in ips}
str_ips = [str(ip) for ip in ips]

with concurrent.futures.ThreadPoolExecutor() as executor:
reversed_ips = {
ip: query_result
for ip, query_result in zip(
str_ips,
executor.map(
reverse_query,
itertools.repeat(resolver, len(str_ips)),
str_ips
)
)
}

reversed_ips = {k: v for k, v in reversed_ips.items() if v is not None}

if filter_func:
reversed_ips = {k: v for k, v in reversed_ips.items() if v and filter_func(v[0].to_text())}

if not reversed_ips:
return

print("Nearby:")
pprint.pprint({k: v[0].to_text() for k, v in reversed_ips.items() if v})
return reversed_ips


def get_stripped_file_lines(filename):
Expand Down Expand Up @@ -216,7 +228,10 @@ def fierce(**kwargs):

if kwargs.get("range"):
internal_range = ipaddress.IPv4Network(kwargs.get("range"))
find_nearby(resolver, list(internal_range))
nearby_ips = find_nearby(resolver, list(internal_range))
if nearby_ips:
print("Nearby:")
pprint.pprint({k: v[0].to_text() for k, v in nearby_ips.items() if v})

if not kwargs.get("domain"):
return
Expand Down Expand Up @@ -293,7 +308,10 @@ def fierce(**kwargs):
ips = set(ips) - set(visited)
visited |= ips

find_nearby(resolver, ips, filter_func=filter_func)
nearby_ips = find_nearby(resolver, ips, filter_func=filter_func)
if nearby_ips:
print("Nearby:")
pprint.pprint({k: v[0].to_text() for k, v in nearby_ips.items() if v})

if kwargs.get("delay"):
time.sleep(kwargs["delay"])
Expand Down
66 changes: 66 additions & 0 deletions tests/test_fierce.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -275,6 +275,72 @@ def test_zone_transfer_form_error(self):

self.assertIsNone(result)

def test_find_nearby_empty(self):
resolver = 'unused'
ips = []

result = fierce.find_nearby(resolver, ips)
expected = {}

self.assertEqual(expected, result)

def test_find_nearby_basic(self):
resolver = 'unused'
ips = [
ipaddress.IPv4Address('192.168.1.0'),
ipaddress.IPv4Address('192.168.1.1'),
]
side_effect = [
'sd1.example.com.',
'sd2.example.com.',
]

with unittest.mock.patch.object(fierce, 'reverse_query', side_effect=side_effect):
result = fierce.find_nearby(resolver, ips)

expected = {
'192.168.1.0': 'sd1.example.com.',
'192.168.1.1': 'sd2.example.com.',
}

self.assertEqual(expected, result)

def test_find_nearby_filter_func(self):
resolver = 'unused'
ips = [
ipaddress.IPv4Address('192.168.1.0'),
ipaddress.IPv4Address('192.168.1.1'),
]

# Simply getting a dns.resolver.Answer with a specific result was
# more difficult than I'd like, let's just go with this less than
# ideal approach for now
class MockAnswer(object):
def __init__(self, response):
self.response = response

def to_text(self):
return self.response

returned_answer = [MockAnswer('sd1.example.com.')]

side_effect = [
returned_answer,
[MockAnswer('sd2.example.com.')],
]

def filter_func(reverse_result):
return reverse_result == 'sd1.example.com.'

with unittest.mock.patch.object(fierce, 'reverse_query', side_effect=side_effect):
result = fierce.find_nearby(resolver, ips, filter_func=filter_func)

expected = {
'192.168.1.0': returned_answer,
}

self.assertEqual(expected, result)


if __name__ == "__main__":
unittest.main()

0 comments on commit 946d67e

Please sign in to comment.