Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Processing wildcard failed, resulting in a long time #733

Closed
notwhy opened this issue Sep 15, 2023 · 3 comments
Closed

Processing wildcard failed, resulting in a long time #733

notwhy opened this issue Sep 15, 2023 · 3 comments
Assignees
@TheTechromancer
Labels
bug Something isn't working
Milestone
BBOT 1.1.1 - diff...

Comments

@notwhy
Copy link

notwhy commented Sep 15, 2023

Describe the bug
Processing wildcard failed, resulting in too long a time

mogujie.com has wirdcard domain,like aaaaa.mogujie.com. bbbbb.mogujie.com
when curl aaaaa.mogujie.com, We can see it return '店铺不存在'. we can filter wildcard domain by this features。

BBOT Command
docker run -it blacklanternsecurity/bbot:stable -t mogujie.com -f subdomain-enum -c modules.massdns.max_resolvers=3000

BBOT Config
default

Screenshots
after 24 hours program is still running. execute ctrl+c and no result found .
it seems something wrong when handle wildcard.
@notwhy notwhy added the bug Something isn't working label Sep 15, 2023
@TheTechromancer
Copy link
Collaborator

Thanks for the report. I'll be looking into this.

@TheTechromancer TheTechromancer self-assigned this Sep 15, 2023
@TheTechromancer
Copy link
Collaborator

TheTechromancer commented Sep 17, 2023
edited
Loading

The wildcard is being detected correctly. The issue appears to be that the nsec module is getting stuck in a loop:

[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}
[DBUG] Results for \000.qihe.mogujie.com with kwargs={'type': 'NSEC'}: {'\\000.qihe.mogujie.com'}
[DBUG] Resolving \000.qihe.mogujie.com with kwargs={'rdtype': 'NSEC'}

@TheTechromancer TheTechromancer mentioned this issue Sep 17, 2023
Merged
@TheTechromancer
Copy link
Collaborator

Fixed in #737.

@TheTechromancer TheTechromancer mentioned this issue Sep 17, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@TheTechromancer TheTechromancer

Labels
bug Something isn't working
Projects
None yet
Milestone
BBOT 1.1.1 - difficult_larry
Development

No branches or pull requests
2 participants
@notwhy @TheTechromancer