forked from ecstatic-nobel/Analyst-Arsenal
-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathaa_whoisds.py
150 lines (130 loc) · 5.24 KB
/
aa_whoisds.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
#!/usr/bin/python
"""
Description:
- Download a list of newly registered domains from WHOIS Domain Search (whoisds.com)
- Score and add suspicious domains to a queue while other domains continue to be scored
- Simultaneously make requests to the domains in the queue to search for predefined file extensions
- Recursively download the site when an open directory is found hosting a file with a particular extension
1 positional argument needed:
- Delta : Number of days back to search (GMT)
Optional arguments:
- --dns-twist : Check the twisted keywords found in dns_twisted.yaml
- --directory : Save data to CAP_DIR (default: ./Captures/)
- --level : Recursion depth (default=1, infinite=0)
- --log-nc : File to store domains that have not been checked
- --quiet : Don't show wget output
- --score : Minimum score to trigger a session (Default: 75)
- --threads : Numbers of threads to spawn
- --timeout : Set the connection timeout to TIMEOUT
- --tor : Download files via the Tor network
- --verbose : Show domains being scored
- --very-verbose : Show error messages
Usage:
```
python aa_whoisds.py <DELTA> [--dns-twist] [--directory] [--level] [--log-nc] [--quiet] [--score] [--threads] [--timeout] [--tor] [--verbose] [--very-verbose]
```
Debugger: open("/tmp/aa.txt", "a").write("{}: <MSG>\n".format(<VAR>))
"""
import argparse
import os
import sys
script_path = os.path.dirname(os.path.realpath(__file__)) + "/_tp_modules"
sys.path.insert(0, script_path)
from termcolor import colored, cprint
import commons
# Parse Arguments
parser = argparse.ArgumentParser(description="Attempt to detect phishing kits and open directories via Certstream.")
parser.add_argument(dest="delta",
type=int,
help="Number of days back to search (GMT)")
parser.add_argument("--dns-twist",
dest="dns_twist",
action="store_true",
required=False,
help="Check the twisted keywords found in dns_twisted.yaml")
parser.add_argument("--directory",
dest="cap_dir",
default="./Captures/",
required=False,
help="Save data to CAP_DIR (default: ./Captures/)")
parser.add_argument("--level",
dest="level",
default=1,
required=False,
type=str,
help="Directory depth (default=1, infinite=0")
parser.add_argument("--log-nc",
dest="log_nc",
required=False,
type=str,
help="File to store domains that have not been checked")
parser.add_argument("--quiet",
dest="quiet",
action="store_true",
required=False,
help="Don't show wget output")
parser.add_argument("--score",
dest="score",
default=75,
required=False,
type=int,
help="Minimum score to trigger a session (Default: 75)")
parser.add_argument("--threads",
dest="threads",
default=3,
required=False,
type=int,
help="Numbers of threads to spawn")
parser.add_argument("--timeout",
dest="timeout",
default=30,
required=False,
type=int,
help="Set the connection timeout to TIMEOUT")
parser.add_argument("--tor",
dest="tor",
action="store_true",
required=False,
help="Download files over the Tor network")
parser.add_argument("--verbose",
dest="verbose",
action="store_true",
required=False,
help="Show domains being scored")
parser.add_argument("--very-verbose",
dest="very_verbose",
action="store_true",
required=False,
help="Show error messages")
# Fix directory names
args = commons.fix_directory(parser.parse_args())
# Set threads to a minimum of 20 if using --dns-twist
if args.dns_twist and args.threads < 20:
args.threads = 20
def main():
""" """
# Check if output directories exist
commons.check_path(args)
# Print start messages
commons.show_summary(args)
commons.show_networking(args) # globals: proxies, torsocks
# Read config.yaml
commons.read_config(args) # globals: config
# Recompile exclusions
commons.recompile_exclusions() # globals: exclusions
# Create queues
domain_queue = commons.create_queue("domain_queue")
url_queue = commons.create_queue("url_queue")
# Create threads
commons.DomainQueueManager(args, domain_queue, url_queue)
commons.UrlQueueManager(args, url_queue)
# Get domains
domains = commons.get_domains(args)
print((colored("Scoring and checking the domains...\n", "yellow", attrs=["bold"])))
for domain in (sorted(domains)):
domain_queue.put(domain)
domain_queue.join()
url_queue.join()
return
if __name__ == "__main__":
main()