wydomain 是目標(biāo)系統(tǒng)信息收集組件，完全模塊化，腳本均可拆可并、可合可分的使用。

運(yùn)行流程

• 利用FOFA插件獲取兄弟域名，并透視獲取到的子域名相關(guān)二級(jí)域名、IP信息

• 檢查域名和兄弟域名是否存在域傳送漏洞,存在就遍歷zone記錄，將結(jié)果集推到wydomians數(shù)據(jù)組

• 獲取可以獲取的公開信息 MX、DNS、SOA記錄

• 子域名字典暴力窮舉域名(60000條字典[domain_default.csv])

• 利用第三方API查詢子域名(links、alexa、bing、google、sitedossier、netcraft)

• 逐個(gè)域名處理TXT記錄, 加入總集合

• 解析獲取到的所有子域名，生成IP列表集合，截取成RFC地址C段標(biāo)準(zhǔn)(42.42.42.0/24)

• 利用bing.com、aizhan.com的接口，查詢所有C段旁站的綁定情況

• 生成數(shù)據(jù)可視化報(bào)告

• 返回wydomains數(shù)據(jù)結(jié)果

運(yùn)行環(huán)境

• CentOS、Kali Linux、Ubuntu、Debian

• Python 2.7.x

• phantomjs (http://www.phantomjs.org)

• dnsdict6 (https://www.thc.org/thc-ipv6/)

使用方法

命令行使用

python?wydomain.py?wooyun.org

建議后臺(tái)運(yùn)行，然后去睡覺，一覺醒來(lái)會(huì)有新發(fā)現(xiàn)！
nohup?python?wydomain.py?wooyun.org?&

掃描結(jié)果報(bào)告

使用瀏覽器打開：report/result_wooyun.org.html

CentOS 安裝

安裝git & 下載wydomian

yum?-y?install?git
git?clone?https://github.com/ring04h/wydomain.git

安裝phantomjs

http://phantomjs.org/download.html

32位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-i686.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-i686.tar.bz2
yum?install?openssl-devel?freetype-devel?fontconfig-devel
cp?./bin/phantomjs?/usr/bin/

64位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-x86_64.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-x86_64.tar.bz2
yum?install?openssl-devel?freetype-devel?fontconfig-devel
cp?./bin/phantomjs?/usr/bin/

安裝dnsdict6

wget?http://www.thc.org/releases/thc-ipv6-2.7.tar.gz
tar?zvxf?thc-ipv6-2.7.tar.gz
cd?thc-ipv6-2.7
yum?install?libpcap-devel?openssl-devel
make
cp?dnsdict6?/usr/bin/

Kali 安裝(自帶dnsdict6)

安裝git & 下載wydomian

apt-get?install?git
git?clone?https://github.com/ring04h/wydomain.git

安裝phantomjs

http://phantomjs.org/download.html

32位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-i686.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-i686.tar.bz2
cp?./bin/phantomjs?/usr/bin/

64位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-x86_64.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-x86_64.tar.bz2
cp?./bin/phantomjs?/usr/bin/

Ubuntu & Debian Linux 安裝

安裝git & 下載wydomian

apt-get?install?git
git?clone?https://github.com/ring04h/wydomain.git

安裝phantomjs

http://phantomjs.org/download.html

32位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-i686.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-i686.tar.bz2
sudo?apt-get?install?libsqlite3-dev?libfontconfig1-dev?libicu-dev?libfreetype6?libssl-dev?libpng-dev?libjpeg-dev
cp?./bin/phantomjs?/usr/bin/

64位系統(tǒng)
wget?https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-1.9.8-linux-x86_64.tar.bz2
tar?vxf?phantomjs-1.9.8-linux-x86_64.tar.bz2
sudo?apt-get?install?libsqlite3-dev?libfontconfig1-dev?libicu-dev?libfreetype6?libssl-dev?libpng-dev?libjpeg-dev
cp?./bin/phantomjs?/usr/bin/

安裝dnsdict6

wget?http://www.thc.org/releases/thc-ipv6-2.7.tar.gz
tar?zvxf?thc-ipv6-2.7.tar.gz
cd?thc-ipv6-2.7
sudo?apt-get?install?libpcap-dev?libssl-dev
make
sudo?cp?dnsdict6?/usr/bin/

數(shù)據(jù)結(jié)構(gòu)

wydomains?=?{
?'domain':?{
??????'weibo.com':?{
???????????'m.weibo.com':?{},
???????????'wwww.weibo.com':?{},
???????????'movie.weibo.com':?{},
???????????'data.weibo.com':?{},
??????},
??????'weibo.cn':?{
???????????'www.weibo.cn':?{},
???????????'m.weibo.cn':?{},
???????????'game.weibo.cn':?{},
??????},
??????'sina.com.cn':?{
???????????'news.sina.com.cn':?{},
???????????'blog.sina.com.cn':?{},
???????????'my.sina.com.cn':?{},
??????},
??????'sina.cn'?:?{
???????????'www.sina.cn':?{},
???????????'news.sina.cn':?{},
??????},
?},
?'ipaddress':?{
??????'42.62.52.0/24':?{
???????????'192.168.1.23':?{
????????????????'www.bizmyth.net':?{},
????????????????'www.189.com':?{},
???????????},
???????????'192.168.1.58':?{
????????????????'www.xiaomi.com':?{},
????????????????'z.aizhan.com':?{},
???????????},
??????},
??????'42.62.14.0/24':?{
???????????'192.168.2.23':?{
????????????????'www.aizhan.net':?{},
????????????????'www.wanda.cn':?{},
???????????},
???????????'192.168.2.22':?{
????????????????'wuyun.org':?{},
????????????????'zone.wooyun.org':?{},
???????????},
??????},
?},
?'mx':?{
??????‘weibo.com':?['mxbiz2.qq.com',?'mxbiz1.qq.com’],
??????‘weibo.cn':?['mxbiz2.qq.com',?'mxbiz1.qq.com’],
??????’sina.com.cn':?['mxbiz2.qq.com',?'mxbiz1.qq.com’],
??????’sina.cn':?['mxbiz2.qq.com',?'mxbiz1.qq.com’]
?},
?'dns':?{
??????‘weibo.com':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????‘weibo.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????’sina.com.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????’sina.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
?}
?’soa':?{
??????‘weibo.com':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????‘weibo.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????’sina.com.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],
??????’sina.cn':?['ns1.dnsv2.com',?'ns2.dnsv2.com’],??????????
?}

}