scripts/dnsdb-domain at master · sidaf/scripts · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
#!/usr/bin/env python3

###########
# IMPORTS #
###########

import os
import sys
import argparse
import socket
import json
from multiprocessing import Pool
#from multiprocessing.dummy import Pool  # utilise threads rather than subprocesses
import signal
import requests
from io import StringIO

####################
# GLOBAL VARIABLES #
####################

global url
global addresses


#############
# FUNCTIONS #
#############


def dnsdb_lookup(domain):
    headers = {'Accept': 'application/json'}
    response = requests.get("%s/rrset/name/*.%s" % (url, domain), headers=headers)
    if "no results found for query" in response.text:
        return
    data = StringIO(response.text)
    for line in data:
        jsonobj = json.loads(line)
        rrtype = str(jsonobj['rrtype'])
        host = str(jsonobj['rrname'])[:-1] # slice the trailing dot
        if rrtype ==  "A":
            address = str(jsonobj['rdata'][0])
            if addresses is None or address in addresses:
                sys.stdout.write('%s,%s\n' % (address, host))
                sys.stdout.flush()
        elif rrtype == "CNAME":
            cname = str(jsonobj['rdata'][0])[:-1]
            #sys.stdout.write('%s => (CNAME) %s\n' % (host, cname))
        else:
            #sys.stdout.write('%s => (%s) %s\n' % (host, rrtype, ", ".join(jsonobj['rdata'])))
            pass


def initializer():
    """Ignore CTRL+C in the worker process."""
    #signal.signal(signal.SIGINT, signal.SIG_IGN)


########
# MAIN #
########

if __name__ == '__main__':
    desc = 'Obtain observed entries from DNSDB for the supplied domains and output results in CSV format.'

    parser = argparse.ArgumentParser(description=desc)
    parser.add_argument('-f', '--filter',
                        action='store',
                        help='a list of IP addresses to filter against, only matching results are printed',
                        metavar='FILE',
                        default=None)
    parser.add_argument('file',
                        nargs='?',
                        type=argparse.FileType('r'),
                        action='store',
                        help='file containing a list of domains split by a newline, otherwise read from STDIN',
                        metavar='FILE',
                        default=sys.stdin)
    args = parser.parse_args()

    # Check for DNSDB env
    try:
        global url
        url = os.environ['DNSDB']
        if not url:
            sys.stderr.write("Error: DNSDB environment variable is emtpty, unable to obtain server url, please set accordingly.\n")
            exit(1)
    except KeyError:
        sys.stderr.write("Error: DNSDB environment variable not set, unable to obtain server url, please set accordingly.\n")
        exit(1)

    # compile filter (if supplied)
    global addresses
    if args.filter:
        with open(args.filter) as fp:
            addresses = [line.strip() for line in fp if len(line.strip())>0 and line[0] != '#']
    else:
        addresses = None

    # compile list of domains to brute force
    try:
        domains = [line.strip() for line in args.file]
    except KeyboardInterrupt:
        exit()

    # remove duplicates and sort
    domains = list(set(domains))
    domains = sorted(domains)

    pool = Pool(processes=10, initializer=initializer)
    try:
        pool.map(dnsdb_lookup, domains)
        pool.close()
        pool.join()
    except KeyboardInterrupt:
        pool.terminate()
        pool.join()