nsecx

- NSEC[3] Walking for DNSSEC
git clone git://git.acid.vegas/nsecx.git
Log | Files | Refs | Archive | README | LICENSE

README.md (2798B)

      1 # NSECX
      2 > Research project on NSEC[3] walking for DNSSEC enabled Zones
      3 
      4 ![](./.screens/preview.gif)
      5 
      6 ## [Work in Progress]
      7 
      8 The repository contains utilities for DNSSEC zone enumeration and subdomain discovery via NSEC/NSEC3 walking. It focuses on extracting and analyzing DNSSEC records for TLDs and specific target domains. Meant for educational purposes, security research, and sanctioned penetration testing, these tools aid in uncovering the underlying mechanisms of DNS security.
      9 
     10 ## DNSSEC Statistics
     11 | Status                                   | Percentage | TLDs  |
     12 | ---------------------------------------- | ---------- | ----- |
     13 | [NSEC3](./dnssec_stats/nsec3.txt)        | 90%        | 1,313 |
     14 | [NSEC](./dnssec_stats/nsec.txt)          | 3%         | 51    |
     15 | [NO DNSSEC](./dnssec_stats/nodnssec.txt) | 7%         | 98    |
     16 
     17 ## NSEC Pitfalls
     18 - Results inconsistent, must hop dns servers on ALL issues to continue the crawl.
     19 - Running into \000 *(null)* characters in sub-domains *(strange bind version [issue](https://gitlab.isc.org/isc-projects/bind9/-/issues/2779) missing "w" character in the charmap)*
     20 
     21 - Running into *.domain.tld issues creates a crawling loop :
     22 ```
     23 Next domain: myfreedom.auto.
     24 Next domain: ne.auto.
     25 Next domain: neom.auto.
     26 Next domain: netdirector.auto.
     27 Next domain: netprophet.auto.
     28 Next domain: netto.auto.
     29 Next domain: newjersey.auto.
     30 Next domain: nexteer.auto.
     31 Next domain: nextev.auto.
     32 Next domain: nh.auto.
     33 Next domain: nic.auto.
     34 Next domain: *.nic.auto.
     35 Next domain: _c311ff38bcd400b0adf7fa2b71732858.nic.auto.
     36 Next domain: a.nic.auto.
     37 Next domain: b.nic.auto.
     38 Next domain: c.nic.auto.
     39 Next domain: d.nic.auto.
     40 Next domain: web1.nic.auto.
     41 Next domain: web2.nic.auto.
     42 Next domain: whois.nic.auto.
     43 Next domain: _aa5536969dd3a62238209b6b2b750c1c.whois.nic.auto.
     44 Next domain: www.nic.auto.
     45 Next domain: _b529263a31adafb2e3be5d632e66c16b.www.nic.auto.
     46 Next domain: nic.auto.
     47 Next domain: *.nic.auto.
     48 Next domain: _c311ff38bcd400b0adf7fa2b71732858.nic.auto.
     49 Next domain: a.nic.auto.
     50 Next domain: b.nic.auto.
     51 Next domain: c.nic.auto.
     52 Next domain: d.nic.auto.
     53 Next domain: web1.nic.auto.
     54 Next domain: web2.nic.auto.
     55 Next domain: whois.nic.auto.
     56 Next domain: _aa5536969dd3a62238209b6b2b750c1c.whois.nic.auto.
     57 Next domain: www.nic.auto.
     58 Next domain: _b529263a31adafb2e3be5d632e66c16b.www.nic.auto.
     59 Next domain: nic.auto.
     60 Next domain: *.nic.auto.
     61 Next domain: _c311ff38bcd400b0adf7fa2b71732858.nic.auto.
     62 ```
     63 
     64 ## References
     65 - https://www.rfc-editor.org/rfc/rfc5155.html
     66 
     67 ___
     68 
     69 ###### Mirrors for this repository: [acid.vegas](https://git.acid.vegas/nsecx) • [SuperNETs](https://git.supernets.org/acidvegas/nsecx) • [GitHub](https://github.com/acidvegas/nsecx) • [GitLab](https://gitlab.com/acidvegas/nsecx) • [Codeberg](https://codeberg.org/acidvegas/nsecx)