Optional flag support to display results based on DNS response code - Githubissues

projectdiscovery / shuffledns

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

https://projectdiscovery.io

GNU General Public License v3.0

1.33k stars 192 forks source link

Optional flag support to display results based on DNS response code #57

Open marcelo321 opened 3 years ago

marcelo321 commented 3 years ago

Hello,

I don't know if it is ok to propose flags, but would be fucking amazing to have a flag like -response where we can specify the type of server status we want to get.

The default value would run the tool the same way it is running now. And if I specify like -response refused that it only shows the subdomains that gave the status refused. It should support the 4 main status, noerror, nxdomain, servfail, refused.

I would love to have that as I was doing it manually with massdns but the scripts were a mess.. shuffledns <3

marcelo321 commented 3 years ago

The main reason why I am asking this is that:

If we have a subdomain that responds with nxdomain but has a valid cname record, massdns actually prints the record and lets us process and get the subdomain/domain.

Shuffledns discards all nxdomains with valid cnames, killing the recon for subdomain takeover and others.

marcelo321 commented 3 years ago

Let me know if something isn't clear, but essentially to make shuffledns not discard subs with valid records. (then the flag thing to get specific server status might be an enhancement ).

marcelo321 commented 3 years ago

For servfails would also be helpful @ehsandeep!

marcelo321 commented 3 years ago

Any update with this?

zealsham commented 3 years ago

hey @marcelo321 did you find a way to use massdns and still fillter wildcard ?