The script looks up the IP's for a list of provided domains, it uses data from the first column of the domains.csv to find the IP address and then the hosting provider which is output to the file hosting.csv.
- Clone this repositry to run locally:
git clone https://github.com/bigscotia10/ipinfo-domain-lookups
- Install the following dependencies:
npm install fs dns axios csv-parser dotenv
- Add your list of domains to
domains.csv
or replace this file with your WSRA output and ensure it is nameddomains.csv
- Create a local .env file
touch .env
and add the following to it:IPINFO_TOKEN=YOUR_TOKEN
(Get a free API Token here: https://ipinfo.io/) - Run:
node hosting.js
- Your results are output to
hosting.csv
If you want to use the domains script to lookup subdomains, you can use it like this:
- Install and run https://github.com/projectdiscovery/subfinder
- Run:
node domains.js
- That outputs subdomain lookup results into the file
domains.csv
- You may then repeat steps 5-6 to perform hosting lookup over the subdomains you lookedup. (This takes the domains.csv file and outputs the hosting lookup results into hosting.csv)
The waf.js script is a work in progress. My goal is to quickly itterate over all the subdomains to get WAF yes/no and what WAF is if found. I need to do more research on best approaches, right now it's just using lots of if statements.
Run the following: pip install python-dotenv requests (Make sure to add your .env file for your API Key)