Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

scripts/dns-brute: Adds wildcard detection for A and AAAA records. #950

Closed
wants to merge 1 commit into from

Conversation

@aars
Copy link

@aars aars commented Jul 25, 2017

Hi!

The dns-brute script will happily list all configured hosts if a domain uses a wildcard record.

This PR adds detection for A and AAAA wildcards, and disables the type of record it thinks is a wildcard. I've added script arg dns-brute.force to override this.

All and any feedback is welcome. If I can improve this somehow (some built-in random string generation maybe? (I found stdnse.generate_random_string)) please let me know!

Cheers

@aars
Copy link
Author

@aars aars commented Jul 25, 2017

PS: I was unable to find any tests for this (or other scripts). If I missed those, please point me in the right direction.

Loading

@aars aars force-pushed the script-dns-brute-detect-wildcards branch from de2df18 to 4764fcb Jul 25, 2017
@dmiller-nmap
Copy link

@dmiller-nmap dmiller-nmap commented Jul 27, 2017

Loading

@nmap-bot nmap-bot closed this in 1139e8b Jul 27, 2017
@aars
Copy link
Author

@aars aars commented Jul 27, 2017

Ah! Good call on checking against the wildcard address. That's very useful! Cheers.

Loading

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Linked issues

Successfully merging this pull request may close these issues.

None yet

2 participants