External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-18 02:15:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1511 from projectdiscovery/issue-1464-dns-ptr-query

Browse Source 
Adding auto-PTR IP to FQDN
This commit is contained in:
Sandeep Singh 2022-01-19 17:30:12 +05:30 committed by GitHub
commit 93616a9e80
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 55 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
integration_tests/dns/ptr.yaml Normal file
View File

@ -0,0 +1,22 @@
id: ptr-fingerprint
info:
name: PTR Fingerprint
author: pdteam
severity: info
tags: dns,ptr
dns:
- name: "{{FQDN}}"
type: PTR
matchers:
- type: word
words:
- "IN\tPTR"
extractors:
- type: regex
group: 1
regex:
- "IN\tPTR\t(.+)"

17
v2/cmd/integration-test/dns.go
View File

@ -6,6 +6,7 @@ import (
var dnsTestCases = map[string]testutils.TestCase{ var dnsTestCases = map[string]testutils.TestCase{
"dns/basic.yaml": &dnsBasic{}, "dns/basic.yaml": &dnsBasic{},
"dns/ptr.yaml": &dnsPtr{},
} }
type dnsBasic struct{} type dnsBasic struct{}
@ -23,3 +24,19 @@ func (h *dnsBasic) Execute(filePath string) error {
} }
return expectResultsCount(results, 1) return expectResultsCount(results, 1)
} }
type dnsPtr struct{}
// Execute executes a test case and returns an error if occurred
func (h *dnsPtr) Execute(filePath string) error {
var routerErr error
results, err := testutils.RunNucleiTemplateAndGetResults(filePath, "1.1.1.1", debug)
if err != nil {
return err
}
if routerErr != nil {
return routerErr
}
return expectResultsCount(results, 1)
}

22
v2/pkg/protocols/dns/dns.go
View File

@ -1,7 +1,6 @@
package dns package dns
import ( import (
"net"
"strings" "strings"
"github.com/miekg/dns" "github.com/miekg/dns"
@ -9,6 +8,7 @@ import (
"github.com/weppos/publicsuffix-go/publicsuffix" "github.com/weppos/publicsuffix-go/publicsuffix"
"github.com/projectdiscovery/iputil"
"github.com/projectdiscovery/nuclei/v2/pkg/operators" "github.com/projectdiscovery/nuclei/v2/pkg/operators"
"github.com/projectdiscovery/nuclei/v2/pkg/protocols" "github.com/projectdiscovery/nuclei/v2/pkg/protocols"
"github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions" "github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions"
@ -170,11 +170,21 @@ func (request *Request) Requests() int {
} }
// Make returns the request to be sent for the protocol // Make returns the request to be sent for the protocol
func (request *Request) Make(domain string) (*dns.Msg, error) { func (request *Request) Make(host string) (*dns.Msg, error) {
if request.question != dns.TypePTR && net.ParseIP(domain) != nil { isIP := iputil.IsIP(host)
return nil, errors.New("cannot use IP address as DNS input") switch {
case request.question == dns.TypePTR && isIP:
var err error
host, err = dns.ReverseAddr(host)
if err != nil {
return nil, err
}
default:
if isIP {
return nil, errors.New("cannot use IP address as DNS input")
}
host = dns.Fqdn(host)
} }
domain = dns.Fqdn(domain)
// Build a request on the specified URL // Build a request on the specified URL
req := new(dns.Msg) req := new(dns.Msg)
@ -183,7 +193,7 @@ func (request *Request) Make(domain string) (*dns.Msg, error) {
var q dns.Question var q dns.Question
final := replacer.Replace(request.Name, GenerateDNSVariables(domain)) final := replacer.Replace(request.Name, GenerateDNSVariables(host))
q.Name = dns.Fqdn(final) q.Name = dns.Fqdn(final)
q.Qclass = request.class q.Qclass = request.class