[Feature request] Validate DNS resolvers

d3mondev / puredns

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

GNU General Public License v3.0

1.65k stars 155 forks source link

[Feature request] Validate DNS resolvers #5

Closed shelld3v closed 1 year ago

shelld3v commented 3 years ago

Like Amass, puredns should perform an initial scan against DNS resolvers when starting, in order to see if any resolver has died (some resolvers on public-dns.info are taken down usually)

d3mondev commented 3 years ago

In this specific use case, this is typically not an issue - massdns will retry up to 50 times with different resolvers if it fails to get a response. Testing the resolvers on each launch would slow down the process too much - instead, it would be more efficient to have a recurring cron task that obtains fresh resolvers and tests them with dnsvalidator.

That said, it's possible that I add a feature to download and test resolvers in puredns in the future.

d3mondev commented 1 year ago

I've decided not to go forward with adding more features like this to puredns. I think it would be better suited for a standalone tool.