DNS Server Test

[theabraxas]

Sometimes, on consumer ISPs mostly, the default DNS provider will provide answers as if the target domain used a wildcard DNS entry, this leads to the domainscan taking a very long time and being inaccurate.

In order to prevent this we should use a known target - perhaps the bsec.io domain and do a bruteforce of ~100 domains and validate that only the proper ones replied. If many reply we would cancel the Battalion scan and notify the user to temporarily switch to a DNS server like 8.8.8.8.

[theabraxas]

We could even just write a '--fix-dns' flag in to the script which will: cat /etc/resolv.conf > variable echo "nameserver 8.8.8.8" > /etc/resolv.conf <scan stuff> echo variable > /etc/resolv.conf

Thoughts @eidolonpg ?