Add in an A-record query, print output like amass

2025-10-29 16:59:27 +00:00 · 2019-09-24 13:10:14 -07:00 · 2019-09-24 13:10:14 -07:00 · 637498e28c
commit 637498e28c
parent 0ea7d165e2
1 changed files with 29 additions and 16 deletions
--- a/dns/dnssec-walker.py
+++ b/dns/dnssec-walker.py
@ -8,23 +8,23 @@ Requires:
    - pip install dnspython
 '''

-import dns.resolver 
+import dns.resolver
 import dns.rdatatype
 import dns.query
 import sys

 def main():
    targetDomain = sys.argv[1] # pass in a target domain to walk
-    
+
    # If the provided domain doesn't end with a '.', add one so that we can compare against the actual DNS records
    if not targetDomain.endswith('.'):
        targetDomain+='.'
-    print("Target Domain: %s" % targetDomain)
-   
-   # we set nextDomain so that we can loop starting at the beginning
+    #print("Target Domain: %s" % targetDomain)
+
+    # we set nextDomain so that we can loop starting at the beginning
    nextDomain = targetDomain
    resolv = dns.resolver.Resolver()
-    
+
    # Get and then set the authoritative nameservers
    nsnames = resolv.query(targetDomain, dns.rdatatype.NS).rrset
    nsaddrs = []
@ -32,24 +32,37 @@ def main():
        # take the first A record for the name and append it to our nameserver list
        nsaddrs.append(resolv.query(str(name), dns.rdatatype.A).rrset[0].to_text())
    resolv.nameservers = nsaddrs
-    
-    try:
-        while nextDomain:
+
+    while nextDomain:
+        outstr = str(nextDomain)[:-1] + " "
+        try:
+            arec = resolv.query(nextDomain, 'A')
+            for rdata in arec:
+                outstr += str(rdata) + ","
+        except dns.resolver.NoAnswer:
+            pass
+        except dns.resolver.NXDOMAIN:
+            pass
+        except Exception as e:
+            raise
+        print(outstr[:-1])
+
+        try:
            ans = resolv.query(nextDomain, 'NSEC')
            for item in ans.response.answer:
                for sub in item:
                    # since it's a cyclical list, stop when we reach the beginning
                    if str(sub.next) != targetDomain:
-                        print(sub.next)
+                        #print(sub.next)
                        nextDomain = sub.next
                    else:
                        return
-    except dns.resolver.NoAnswer:
-        return
-    except dns.resolver.NXDOMAIN:
-        return
-    except:
-        return
+        except dns.resolver.NoAnswer:
+            pass
+        except dns.resolver.NXDOMAIN:
+            pass
+        except Exception as e:
+            raise

 if __name__ == '__main__':
    main()