dnsreaper - Trickest Platform Documentation

Details

Category: Vulnerabilities

Publisher: trickest-mhmdiaa

Created Date: 9/7/2022

Container: quay.io/trickest/dnsreaper:dd7fa2a-patch-2

Source URL: https://github.com/punk-security/dnsReaper

Parameters

aws

boolean

required

Command: aws - Scan multiple domains by fetching them from AWS Route53

bind

boolean

required

Command: bind - Read domains from a dns BIND zone file, or path to multiple

file

boolean

required

Command: file - Read domains from a file (or folder of files), one per line

azure

boolean

required

Command: azure - Scan multiple domains by fetching them from Azure DNS services

single

boolean

required

Command: single - Scan a single domain by providing a domain on the commandline

verbose

boolean

Command: -v - Verbose output

nocolour

boolean

Command: --nocolour - Turns off coloured text

pipeline

boolean

Command: --pipeline - Exit Non-Zero on detection (used to fail a pipeline)

resolver

string

Command: --resolver - Provide a custom DNS resolver (or multiple seperated by commas)

signature

string

Command: --signature - Only scan with this signature

cloudflare

boolean

required

Command: cloudflare - Scan multiple domains by fetching them from Cloudflare

do-api-key

string

Command: --do-api-key - DigitalOcean API key (the `digitalocean` input must be set to true)

do-domains

string

Command: --do-domains - Limit the scan to these domains (comma-separated)

file-input

file

Command: --filename - List of domains to scan (the `file` input must be set to true)

out-format

string

Command: --out-format - Output format (csv/json)

parallelism

string

Command: --parallelism - Number of domains to test in parallel - too high and you may see odd DNS results (default: 30)

az-client-id

string

Command: --az-client-id - Azure client ID (the `azure` input must be set to true)

az-tenant-id

string

Command: --az-tenant-id - Azure tenant ID (the `azure` input must be set to true)

digitalocean

boolean

required

Command: digitalocean - Scan multiple domains by fetching them from Digital Ocean

zonetransfer

boolean

Command: zonetransfer - Scan multiple domains by fetching records via DNS zone transfer

extra-verbose

boolean

Command: -vv - Extra verbose output

single-domain

string

Command: --domain - Scan this one domain (the `single` input must be set to true)

bind-zone-file

file

Command: --bind-zone-file - Bind zone file (the `bind` input must be set to true)

enable-unlikely

boolean

Command: --enable-unlikely - Check for more conditions, but with a high false positive rate

az-client-secret

string

Command: --az-client-secret - Azure client secret (the `azure` input must be set to true)

cloudflare-token

string

Command: --cloudflare-token - Cloudflare token (the `cloudflare` input must be set to true)

disable-probable

boolean

Command: --disable-probable - Do not check for probable conditions

aws-access-key-id

string

Command: --aws-access-key-id - AWS access key ID (the `aws` input must be set to true)

exclude-signature

string

Command: --exclude-signature - Do not scan with this signature

az-subscription-id

string

Command: --az-subscription-id - Azure subscription ID (the `azure` input must be set to true)

zonetransfer-domain

string

Command: --zonetransfer-domain - Root domain to scan for (the `zonetransfer` input must be set to true)

aws-access-key-secret

string

Command: --aws-access-key-secret - AWS access key secret (the `aws` input must be set to true)

zonetransfer-nameserver

string

Command: --zonetransfer-nameserver - DNS server fqdn (such as ns1.domain.com) or IP address (the `zonetransfer` input must be set to true)

Library

Details

Parameters