dnsreaper - Trickest Platform Documentation

Name:dnsreaper

Category:Vulnerabilities

Publisher:trickest-mhmdiaa

Created:9/7/2022

Container:quay.io/trickest/dnsreaper:dd7fa2a-patch-2

Output Type:

License:Unknown

Source:View Source

Parameters

aws

boolean

required

awsScan multiple domains by fetching them from AWS Route53

bind

boolean

required

bindRead domains from a dns BIND zone file, or path to multiple

file

boolean

required

fileRead domains from a file (or folder of files), one per line

azure

boolean

required

azureScan multiple domains by fetching them from Azure DNS services

single

boolean

required

singleScan a single domain by providing a domain on the commandline

verbose

boolean

-vVerbose output

nocolour

boolean

--nocolourTurns off coloured text

pipeline

boolean

--pipelineExit Non-Zero on detection (used to fail a pipeline)

resolver

string

--resolverProvide a custom DNS resolver (or multiple seperated by commas)

signature

string

--signatureOnly scan with this signature

cloudflare

boolean

required

cloudflareScan multiple domains by fetching them from Cloudflare

do-api-key

string

--do-api-keyDigitalOcean API key (the `digitalocean` input must be set to true)

do-domains

string

--do-domainsLimit the scan to these domains (comma-separated)

file-input

file

--filenameList of domains to scan (the `file` input must be set to true)

out-format

string

--out-formatOutput format (csv/json)

parallelism

string

--parallelismNumber of domains to test in parallel - too high and you may see odd DNS results (default: 30)

az-client-id

string

--az-client-idAzure client ID (the `azure` input must be set to true)

az-tenant-id

string

--az-tenant-idAzure tenant ID (the `azure` input must be set to true)

digitalocean

boolean

required

digitaloceanScan multiple domains by fetching them from Digital Ocean

zonetransfer

boolean

zonetransferScan multiple domains by fetching records via DNS zone transfer

extra-verbose

boolean

-vvExtra verbose output

single-domain

string

--domainScan this one domain (the `single` input must be set to true)

bind-zone-file

file

--bind-zone-fileBind zone file (the `bind` input must be set to true)

enable-unlikely

boolean

--enable-unlikelyCheck for more conditions, but with a high false positive rate

az-client-secret

string

--az-client-secretAzure client secret (the `azure` input must be set to true)

cloudflare-token

string

--cloudflare-tokenCloudflare token (the `cloudflare` input must be set to true)

disable-probable

boolean

--disable-probableDo not check for probable conditions

aws-access-key-id

string

--aws-access-key-idAWS access key ID (the `aws` input must be set to true)

exclude-signature

string

--exclude-signatureDo not scan with this signature

az-subscription-id

string

--az-subscription-idAzure subscription ID (the `azure` input must be set to true)

zonetransfer-domain

string

--zonetransfer-domainRoot domain to scan for (the `zonetransfer` input must be set to true)

aws-access-key-secret

string

--aws-access-key-secretAWS access key secret (the `aws` input must be set to true)

zonetransfer-nameserver

string

--zonetransfer-nameserverDNS server fqdn (such as ns1.domain.com) or IP address (the `zonetransfer` input must be set to true)

Library

Parameters