rsubdomain 1.2.13

A high-performance subdomain brute-force tool written in Rust
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335

use crate::model::{EthTable, PacketTransport, StatusTable};
use crate::send::build_dns_query;
use crate::send::SendDogError;
use crate::state::BruteForceState;
use crate::QueryType;

use pnet::datalink::Channel::Ethernet;
use pnet::datalink::{self, DataLinkSender};
use pnet::packet::ethernet::{EtherTypes, MutableEthernetPacket};
use pnet::packet::ipv4::{Ipv4Flags, MutableIpv4Packet};
use pnet::packet::udp::{ipv4_checksum, MutableUdpPacket};
use pnet::packet::{ip::IpNextHeaderProtocols, Packet};
use rand::Rng;
use std::net::{Ipv4Addr, SocketAddrV4, UdpSocket};
use std::sync::{Arc, Mutex};
use std::thread;
use std::time::Duration;

enum SendBackend {
    Ethernet(Arc<Mutex<Box<dyn DataLinkSender>>>),
    Udp(UdpSocket),
}

#[derive(Clone)]
pub struct SendDog {
    ether: EthTable,
    dns: Vec<String>,
    backend: Arc<SendBackend>,
    index: u16,
    lock: Arc<Mutex<()>>,
    increate_index: bool,
    flag_id: u16,
    flag_id2: u16,
}

impl SendDog {
    pub fn new(ether: EthTable, dns: Vec<String>, flag_id: u16) -> Result<SendDog, SendDogError> {
        let backend = Arc::new(match ether.transport {
            PacketTransport::Ethernet => build_ethernet_backend(&ether)?,
            PacketTransport::Udp => build_udp_backend(&ether)?,
        });

        let default_dns = if dns.is_empty() {
            vec![
                "223.5.5.5".to_string(),
                "223.6.6.6".to_string(),
                "180.76.76.76".to_string(),
                "119.29.29.29".to_string(),
                "182.254.116.116".to_string(),
                "114.114.114.115".to_string(),
            ]
        } else {
            dns
        };

        Ok(SendDog {
            ether,
            dns: default_dns,
            backend,
            flag_id,
            index: 10000,
            lock: Arc::new(Mutex::new(())),
            increate_index: true,
            flag_id2: 0,
        })
    }

    pub fn chose_dns(&self) -> String {
        let mut rng = rand::thread_rng();
        let index = rng.gen_range(0..self.dns.len());
        self.dns[index].to_owned()
    }

    pub fn udp_receiver_socket(&self) -> Result<Option<UdpSocket>, SendDogError> {
        match self.backend.as_ref() {
            SendBackend::Ethernet(_) => Ok(None),
            SendBackend::Udp(socket) => {
                socket
                    .try_clone()
                    .map(Some)
                    .map_err(|error| SendDogError::SocketCloneFailed {
                        source: error.to_string(),
                    })
            }
        }
    }

    pub fn local_port(&self) -> Result<Option<u16>, SendDogError> {
        match self.backend.as_ref() {
            SendBackend::Ethernet(_) => Ok(None),
            SendBackend::Udp(socket) => {
                socket
                    .local_addr()
                    .map(|addr| Some(addr.port()))
                    .map_err(|error| SendDogError::SocketLocalAddressUnavailable {
                        source: error.to_string(),
                    })
            }
        }
    }

    pub fn send(
        &self,
        domain: String,
        dnsname: String,
        query_type: QueryType,
        src_port: u16,
        flag_id: u16,
    ) -> Result<(), SendDogError> {
        let dns_message_id = match self.ether.transport {
            PacketTransport::Ethernet => self.flag_id * 100 + flag_id,
            PacketTransport::Udp => src_port,
        };
        let dns_query = build_dns_query(domain.as_str(), query_type, dns_message_id);
        let ipv4_destination: Ipv4Addr =
            dnsname.parse().map_err(|error: std::net::AddrParseError| {
                SendDogError::InvalidDnsServer {
                    dns_server: dnsname.clone(),
                    source: error.to_string(),
                }
            })?;

        match self.backend.as_ref() {
            SendBackend::Ethernet(handle) => {
                if self.ether.dst_mac == pnet::util::MacAddr::zero() {
                    return Err(SendDogError::MissingDestinationMac);
                }

                let final_packet =
                    build_ethernet_dns_packet(&self.ether, src_port, ipv4_destination, &dns_query);
                let mut handle = handle.lock().unwrap();
                match handle.send_to(&final_packet, None) {
                    Some(Ok(())) => Ok(()),
                    Some(Err(error)) => Err(SendDogError::SendFailed {
                        source: error.to_string(),
                    }),
                    None => Err(SendDogError::MissingDestinationInterface),
                }
            }
            SendBackend::Udp(socket) => socket
                .send_to(&dns_query, SocketAddrV4::new(ipv4_destination, 53))
                .map(|_| ())
                .map_err(|error| SendDogError::SendFailed {
                    source: error.to_string(),
                }),
        }
    }

    pub fn build_status_table(
        &mut self,
        state: &BruteForceState,
        domain: &str,
        dns: &str,
        query_type: QueryType,
        domain_level: isize,
    ) -> (u16, u16) {
        let _lock = self.lock.lock().unwrap();
        if self.index >= 60000 {
            self.flag_id2 += 1;
            self.index = 10000;
        }
        if self.flag_id2 > 99 {
            self.increate_index = false;
        }
        if self.increate_index {
            self.index += 1;
        } else {
            loop {
                match state.pop_from_stack() {
                    Some(value) => {
                        let (flag_id2, index) = generate_flag_index_from_map(value);
                        self.flag_id2 = flag_id2;
                        self.index = index;
                        break;
                    }
                    None => {
                        thread::sleep(Duration::from_millis(520));
                    }
                }
            }
        }

        let index = generate_map_index(self.flag_id2, self.index);
        let status = StatusTable {
            domain: domain.to_string(),
            dns: dns.to_string(),
            query_type,
            time: chrono::Utc::now().timestamp() as u64,
            retry: 0,
            domain_level,
        };
        state.append_status(status, index as u32);
        (self.flag_id2, self.index)
    }
}

fn build_ethernet_backend(ether: &EthTable) -> Result<SendBackend, SendDogError> {
    let interfaces = datalink::interfaces();

    let interface = interfaces
        .iter()
        .find(|iface| iface.name == ether.device && !iface.is_loopback())
        .ok_or_else(|| SendDogError::InterfaceNotFound {
            device: ether.device.clone(),
        })?;

    let (tx, _) = match datalink::channel(&interface, Default::default()) {
        Ok(Ethernet(tx, rx)) => (tx, rx),
        Ok(_) => {
            return Err(SendDogError::UnsupportedChannelType {
                interface: interface.name.clone(),
            });
        }
        Err(error) => {
            return Err(SendDogError::ChannelCreationFailed {
                interface: interface.name.clone(),
                source: error.to_string(),
            });
        }
    };

    Ok(SendBackend::Ethernet(Arc::new(Mutex::new(tx))))
}

fn build_udp_backend(ether: &EthTable) -> Result<SendBackend, SendDogError> {
    let socket = UdpSocket::bind(SocketAddrV4::new(ether.src_ip, 0)).map_err(|error| {
        SendDogError::SocketCreationFailed {
            source: error.to_string(),
        }
    })?;
    let _ = socket.set_write_timeout(Some(Duration::from_millis(500)));
    Ok(SendBackend::Udp(socket))
}

fn build_ethernet_dns_packet(
    ether: &EthTable,
    src_port: u16,
    ipv4_destination: Ipv4Addr,
    dns_query: &[u8],
) -> Vec<u8> {
    let ipv4_source = ether.src_ip;
    let dns_query_len = dns_query.len();
    let ipv4_header_len = 20;
    let udp_header_len = 8;
    let total_length: u16 = (ipv4_header_len + udp_header_len + dns_query_len) as u16;

    let mut udp_buffer = vec![0u8; udp_header_len + dns_query_len];
    let mut udp_header = MutableUdpPacket::new(&mut udp_buffer).unwrap();
    udp_header.set_source(src_port);
    udp_header.set_destination(53);
    udp_header.set_length(udp_header_len as u16 + dns_query_len as u16);
    udp_header.set_payload(dns_query);

    let mut ipv4_buffer = [0u8; 20];
    let mut ipv4_header = MutableIpv4Packet::new(&mut ipv4_buffer).unwrap();
    ipv4_header.set_header_length(69);
    ipv4_header.set_total_length(total_length);
    ipv4_header.set_next_level_protocol(IpNextHeaderProtocols::Udp);
    ipv4_header.set_source(ipv4_source);
    ipv4_header.set_destination(ipv4_destination);
    ipv4_header.set_identification(5636);
    ipv4_header.set_ttl(64);
    ipv4_header.set_version(4);
    ipv4_header.set_flags(Ipv4Flags::DontFragment);

    let mut ethernet_buffer = [0u8; 14];
    let mut ethernet_packet = MutableEthernetPacket::new(&mut ethernet_buffer).unwrap();
    ethernet_packet.set_destination(ether.dst_mac);
    ethernet_packet.set_source(ether.src_mac);
    ethernet_packet.set_ethertype(EtherTypes::Ipv4);

    let ip_checksum = pnet::packet::ipv4::checksum(&ipv4_header.to_immutable());
    ipv4_header.set_checksum(ip_checksum);

    let udp_checksum = ipv4_checksum(&udp_header.to_immutable(), &ipv4_source, &ipv4_destination);
    udp_header.set_checksum(udp_checksum);

    let mut final_packet = Vec::new();
    final_packet.extend_from_slice(ethernet_packet.packet());
    final_packet.extend_from_slice(ipv4_header.packet());
    final_packet.extend_from_slice(udp_header.packet());
    final_packet
}

pub fn generate_map_index(flag_id2: u16, index: u16) -> i32 {
    (flag_id2 as i32 * 60000) + index as i32
}

pub fn generate_flag_index_from_map(index: usize) -> (u16, u16) {
    let threshold = 60000usize;
    let flag2 = index / threshold;
    let index2 = index % threshold;
    (flag2 as u16, index2 as u16)
}

#[cfg(test)]
mod tests {
    use super::*;
    use pnet::util::MacAddr;

    #[test]
    fn new_returns_error_for_missing_interface_instead_of_panicking() {
        let ether = EthTable {
            src_ip: Ipv4Addr::new(127, 0, 0, 1),
            device: "__rsubdomain_missing_interface__".to_string(),
            src_mac: MacAddr::new(0, 0, 0, 0, 0, 1),
            dst_mac: MacAddr::new(0, 0, 0, 0, 0, 2),
            transport: PacketTransport::Ethernet,
        };

        let result = SendDog::new(ether, Vec::new(), 1);

        assert!(matches!(
            result,
            Err(SendDogError::InterfaceNotFound { device })
            if device == "__rsubdomain_missing_interface__"
        ));
    }

    #[test]
    fn udp_transport_initializes_local_socket() {
        let ether = EthTable {
            src_ip: Ipv4Addr::new(127, 0, 0, 1),
            device: "utun-test".to_string(),
            src_mac: MacAddr::zero(),
            dst_mac: MacAddr::zero(),
            transport: PacketTransport::Udp,
        };

        let sender = SendDog::new(ether, vec!["8.8.8.8".to_string()], 1).unwrap();

        assert!(sender.local_port().unwrap().is_some());
        assert!(sender.udp_receiver_socket().unwrap().is_some());
    }
}