makuga01 / Dnsfookup
DNS rebinding toolkit
Stars: ✭ 150
Programming Languages
javascript
184084 projects - #8 most used programming language
Labels
Projects that are alternatives of or similar to Dnsfookup
Arduino Fastled Music Visualizer
An Arduino based music visualizer using the FastLED library and a strip of individually addressable LEDs
Stars: ✭ 134 (-10.67%)
Mutual labels: hacking
Proton
Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.
Stars: ✭ 142 (-5.33%)
Mutual labels: hacking
Openvehiclediag
A rust based cross-platform ECU diagnostics and car hacking application, utilizing the passthru protocol
Stars: ✭ 135 (-10%)
Mutual labels: hacking
Quiver
Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-6.67%)
Mutual labels: hacking
Posta
🐙 Cross-document messaging security research tool powered by https://enso.security
Stars: ✭ 143 (-4.67%)
Mutual labels: hacking
Dustcloud
Xiaomi Smart Home Device Reverse Engineering and Hacking
Stars: ✭ 1,907 (+1171.33%)
Mutual labels: hacking
Networm
Python network worm that spreads on the local network and gives the attacker control of these machines.
Stars: ✭ 135 (-10%)
Mutual labels: hacking
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+1116%)
Mutual labels: hacking
N00brat
Remote Administration Toolkit (or Trojan) for POSiX (Linux/Unix) system working as a Web Service
Stars: ✭ 148 (-1.33%)
Mutual labels: hacking
Nosqlmap
Automated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1185.33%)
Mutual labels: hacking
Adbsploit
A python based tool for exploiting and managing Android devices via ADB
Stars: ✭ 147 (-2%)
Mutual labels: hacking
Phpvuln
Audit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (-2.67%)
Mutual labels: hacking
Burpsuite Xkeys
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-4%)
Mutual labels: hacking
DnsFookup v 2.0.1
DNS Rebinding freamwork containing:
- a dns server obviously
- python web api to create new subdomains and control the dns server, view logs, stuff like that
- shitty react app to make it more comfy
What does it do?
It lets you create dns bins like a burp collaborator
but it adds a bit more features...
You can specify what ips/domains should the created subdomain resolve to and how many times, for now it A,CNAME and AAAA record are supported
Then you can see where it was requested from, what did it resolve to,... in logs
Video of tool in action
Source of the vulnerable application is from https://github.com/makuga01/dnsFookup/tree/master/vulnerableApp
How to run it
First of all, check the configuration in config.yaml
You also should not forget to change all passwords and keys inside the config
#Set up postgres and redis
sudo docker-compose up
#in ./BE
pip3 install -r requirements.txt
python3 dns.py # to start the dns server
# for testing purposes development server is enough I think
FLASK_APP=app.py
FLASK_ENV=development
flask run
# then in ./FE
npm install
npm start
PLEASE
If you have a bit of free time, please contribute, it means a lot to me :D
Want to see some feature in next update?
Let me know on keybase
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].