Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Strict wildcard filtering not strict enough #514

Open
nmalcolm opened this issue Mar 1, 2025 · 1 comment
Open

Strict wildcard filtering not strict enough #514

nmalcolm opened this issue Mar 1, 2025 · 1 comment
Assignees
@dwisiswant0

Comments

@nmalcolm
Copy link

nmalcolm commented Mar 1, 2025

Describe the bug
-strict-wildcard doesn't filter all wildcard subdomains. I don't fully understand why, but I observed this behavior.

Shuffledns version

1.1.0

Complete command you used to reproduce this

echo 'thisdoesntexist.autso-msitwus-pbi-kv-httpszoneb9.zb9.w.msitapi.fabric.microsoft.com' | shuffledns -strict-wildcard -d microsoft.com -r resolvers -tr resolvers-trusted -t 5000 -mode resolve


       __        ________        __
  ___ / /  __ __/ _/ _/ /__  ___/ /__ ___
 (_-</ _ \/ // / _/ _/ / -_)/ _  / _ \(_-<
/___/_//_/\_,_/_//_//_/\__/ \_,_/_//_/___/

		projectdiscovery.io

[INF] Current shuffledns version v1.1.0 (latest)
[INF] Executing massdns on microsoft.com
[INF] using massdns output directory: /var/folders/lw/w2pf6cjx2ml2jnfl9d3_5vwh0000gn/T/shuffledns-1000153119
[INF] massdns output file: /var/folders/lw/w2pf6cjx2ml2jnfl9d3_5vwh0000gn/T/shuffledns-1000153119/massdns-stdout-1836701651
[INF] massdns error file: /var/folders/lw/w2pf6cjx2ml2jnfl9d3_5vwh0000gn/T/shuffledns-1000153119/massdns-stderr-3980178704
[INF] Massdns execution took 220.058791ms
[INF] Started parsing massdns output
[INF] Massdns output parsing completed in 263.042µs
[INF] Started removing wildcards records
[INF] Started filtering wildcards for thisdoesntexist.autso-msitwus-pbi-kv-httpszoneb9.zb9.w.msitapi.fabric.microsoft.com
[INF] Wildcard removal completed in 2.383587416s
[INF] Finished enumeration, started writing output
[INF] Trusted resolvers specified, verifying results
[INF] resolved with trusted resolver: thisdoesntexist.autso-msitwus-pbi-kv-httpszoneb9.zb9.w.msitapi.fabric.microsoft.com
thisdoesntexist.autso-msitwus-pbi-kv-httpszoneb9.zb9.w.msitapi.fabric.microsoft.com
[INF] Total resolved: 1
[INF] Output written in 379.395833ms
[INF] Finished resolving.
@dwisiswant0
Copy link
Member

The -strict-wildcard flag is designed to filter records based on their associated IP addresses. When enabled, it ensures that if the same IP address appears multiple times across different iterations of wildcard resolution, only the first occurrence of that record is retained while all subsequent duplicates are discarded. This helps maintain a unique set of results.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@dwisiswant0 dwisiswant0

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nmalcolm @dwisiswant0