Details

Category: Vulnerabilities

Publisher: trickest-mhmdiaa

Created Date: 9/7/2022

Container: quay.io/trickest/dnsreaper:dd7fa2a-patch-2

Source URL: https://github.com/punk-security/dnsReaper

Parameters

aws
boolean
required
Command: aws - Scan multiple domains by fetching them from AWS Route53
bind
boolean
required
Command: bind - Read domains from a dns BIND zone file, or path to multiple
file
boolean
required
Command: file - Read domains from a file (or folder of files), one per line
azure
boolean
required
Command: azure - Scan multiple domains by fetching them from Azure DNS services
single
boolean
required
Command: single - Scan a single domain by providing a domain on the commandline
verbose
boolean
Command: -v - Verbose output
nocolour
boolean
Command: --nocolour - Turns off coloured text
pipeline
boolean
Command: --pipeline - Exit Non-Zero on detection (used to fail a pipeline)
resolver
string
Command: --resolver - Provide a custom DNS resolver (or multiple seperated by commas)
signature
string
Command: --signature - Only scan with this signature
cloudflare
boolean
required
Command: cloudflare - Scan multiple domains by fetching them from Cloudflare
do-api-key
string
Command: --do-api-key - DigitalOcean API key (the `digitalocean` input must be set to true)
do-domains
string
Command: --do-domains - Limit the scan to these domains (comma-separated)
file-input
file
Command: --filename - List of domains to scan (the `file` input must be set to true)
out-format
string
Command: --out-format - Output format (csv/json)
parallelism
string
Command: --parallelism - Number of domains to test in parallel - too high and you may see odd DNS results (default: 30)
az-client-id
string
Command: --az-client-id - Azure client ID (the `azure` input must be set to true)
az-tenant-id
string
Command: --az-tenant-id - Azure tenant ID (the `azure` input must be set to true)
digitalocean
boolean
required
Command: digitalocean - Scan multiple domains by fetching them from Digital Ocean
zonetransfer
boolean
Command: zonetransfer - Scan multiple domains by fetching records via DNS zone transfer
extra-verbose
boolean
Command: -vv - Extra verbose output
single-domain
string
Command: --domain - Scan this one domain (the `single` input must be set to true)
bind-zone-file
file
Command: --bind-zone-file - Bind zone file (the `bind` input must be set to true)
enable-unlikely
boolean
Command: --enable-unlikely - Check for more conditions, but with a high false positive rate
az-client-secret
string
Command: --az-client-secret - Azure client secret (the `azure` input must be set to true)
cloudflare-token
string
Command: --cloudflare-token - Cloudflare token (the `cloudflare` input must be set to true)
disable-probable
boolean
Command: --disable-probable - Do not check for probable conditions
aws-access-key-id
string
Command: --aws-access-key-id - AWS access key ID (the `aws` input must be set to true)
exclude-signature
string
Command: --exclude-signature - Do not scan with this signature
az-subscription-id
string
Command: --az-subscription-id - Azure subscription ID (the `azure` input must be set to true)
zonetransfer-domain
string
Command: --zonetransfer-domain - Root domain to scan for (the `zonetransfer` input must be set to true)
aws-access-key-secret
string
Command: --aws-access-key-secret - AWS access key secret (the `aws` input must be set to true)
zonetransfer-nameserver
string
Command: --zonetransfer-nameserver - DNS server fqdn (such as ns1.domain.com) or IP address (the `zonetransfer` input must be set to true)