A dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
English Doc | 中文文档
- Standard Domain Resolve Service
- DNSLOG
- HTTPLOG
- Rebinding/CustomRebinding
- Push (callback)
- Multi-user
- dockerlized
- python/golang client sdk
- as a standard name resolve service with support
A,CNAME,TXT,MX - xip
super admin user: admin
password will be showed in console logs when first run.
you can change it by subcommand resetpw
requirements:
yarn
cd frontend
yarn install
yarn build
requirements:
golang >= 1.13.0
go builddocker build -t "user/godnslog" .For Chinese user:
docker build -t "user/godnslog" -f DockerfileCN .i. Register your domain, eg: example.com
Set your DNS Server point to your host, eg: ns.example.com => 100.100.100.100
Some registrar limit set to NS host, your can set two ns host point to only one address.
Some registrar to ns host must be different ip address, you can set one to a fake addresss and then change to the same addresss
ii. self build
docker run -p80:8080 -p53:53/udp "user/godnslog" serve -domain yourdomain.com -4 100.100.100.100or use dockerhub
docker pull "sort/godnslog"
docker run -p80:8080 -p53:53/udp -p80:8080 "sort/godnslog" serve -domain yourdomain.com -4 100.100.100.100iii. access http://100.100.100.100
guest/guest123
introduce payload api rebiding resolve
- [x]fix demo code
- [x]add docker-compose
- [x]add default www resolve
- [x]init guest user option
- [x]fix custom clean interval setting
- [x]enhance rebinding chennqqi#14
- [ ]
enhance reverse proxy - [ ]admin user can read all recordds
- [ ]allow Anonymous user access document page
- [ ]enable custom rebinding stage two setting
- [ ]fix logout dialog overlap by markdown
- [ ]fix login logical problem