Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

use dnsdumpster api #1484

Merged
merged 3 commits into from
Jan 14, 2025
Merged

use dnsdumpster api #1484

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
d4f490d
use dnsdumpster api
dogancanbakir Dec 19, 2024
3e9f308
remove debug code
dogancanbakir Jan 14, 2025
2706a94
Merge branch 'dev' into use_dnsdumpster_api
dogancanbakir Jan 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 1 addition & 2 deletions v2/pkg/passive/sources_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -68,7 +68,7 @@ var (
"chinaz",
"crtsh",
"digitorus",
// "dnsdumpster", //failing with "unexpected status code 403 received"
"dnsdumpster",
"dnsrepo",
"fofa",
"fullhunt",
Expand Down Expand Up @@ -98,7 +98,6 @@ var (
"bufferover",
"certspotter",
"crtsh",
"dnsdumpster",
"dnsdb",
"digitorus",
"hackertarget",
Expand Down
94 changes: 29 additions & 65 deletions v2/pkg/subscraping/sources/dnsdumpster/dnsdumpster.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,67 +3,29 @@ package dnsdumpster

import (
"context"
"encoding/json"
"fmt"
"io"
"net/url"
"regexp"
"strings"
"time"

"github.com/projectdiscovery/subfinder/v2/pkg/subscraping"
)

// CSRFSubMatchLength CSRF regex submatch length
const CSRFSubMatchLength = 2

var re = regexp.MustCompile("<input type=\"hidden\" name=\"csrfmiddlewaretoken\" value=\"(.*)\">")

// getCSRFToken gets the CSRF Token from the page
func getCSRFToken(page string) string {
if subs := re.FindStringSubmatch(page); len(subs) == CSRFSubMatchLength {
return strings.TrimSpace(subs[1])
}
return ""
}

// postForm posts a form for a domain and returns the response
func postForm(ctx context.Context, session *subscraping.Session, token, domain string) (string, error) {
params := url.Values{
"csrfmiddlewaretoken": {token},
"targetip": {domain},
"user": {"free"},
}

resp, err := session.HTTPRequest(
ctx,
"POST",
"https://dnsdumpster.com/",
fmt.Sprintf("csrftoken=%s; Domain=dnsdumpster.com", token),
map[string]string{
"Content-Type": "application/x-www-form-urlencoded",
"Referer": "https://dnsdumpster.com",
"X-CSRF-Token": token,
},
strings.NewReader(params.Encode()),
subscraping.BasicAuth{},
)

if err != nil {
session.DiscardHTTPResponse(resp)
return "", err
}

// Now, grab the entire page
in, err := io.ReadAll(resp.Body)
resp.Body.Close()
return string(in), err
type response struct {
A []struct {
Host string `json:"host"`
} `json:"a"`
Ns []struct {
Host string `json:"host"`
} `json:"ns"`
}

// Source is the passive scraping agent
type Source struct {
apiKeys []string
timeTaken time.Duration
errors int
results int
skipped bool
}

// Run function returns all subdomains found with the service
Expand All @@ -78,35 +40,36 @@ func (s *Source) Run(ctx context.Context, domain string, session *subscraping.Se
close(results)
}(time.Now())

resp, err := session.SimpleGet(ctx, "https://dnsdumpster.com/")
if err != nil {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
s.errors++
session.DiscardHTTPResponse(resp)
randomApiKey := subscraping.PickRandom(s.apiKeys, s.Name())
if randomApiKey == "" {
s.skipped = true
return
}

body, err := io.ReadAll(resp.Body)
resp, err := session.Get(ctx, fmt.Sprintf("https://api.dnsdumpster.com/domain/%s", domain), "", map[string]string{"X-API-Key": randomApiKey})
if err != nil {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
s.errors++
resp.Body.Close()
session.DiscardHTTPResponse(resp)
return
}
resp.Body.Close()
defer resp.Body.Close()

csrfToken := getCSRFToken(string(body))
data, err := postForm(ctx, session, csrfToken, domain)
var response response
err = json.NewDecoder(resp.Body).Decode(&response)
if err != nil {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
s.errors++
resp.Body.Close()
return
}
fmt.Println(response)

for _, subdomain := range session.Extractor.Extract(data) {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Subdomain, Value: subdomain}
for _, record := range append(response.A, response.Ns...) {
results <- subscraping.Result{Source: s.Name(), Type: subscraping.Subdomain, Value: record.Host}
s.results++
}

}()

return results
Expand All @@ -118,25 +81,26 @@ func (s *Source) Name() string {
}

func (s *Source) IsDefault() bool {
return false
return true
}

func (s *Source) HasRecursiveSupport() bool {
return true
return false
}

func (s *Source) NeedsKey() bool {
return false
return true
}

func (s *Source) AddApiKeys(_ []string) {
// no key needed
func (s *Source) AddApiKeys(keys []string) {
s.apiKeys = keys
}

func (s *Source) Statistics() subscraping.Statistics {
return subscraping.Statistics{
Errors: s.errors,
Results: s.results,
TimeTaken: s.timeTaken,
Skipped: s.skipped,
}
}
Loading