All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Wildcard filtering not working when wildcard tests put the domain over the 253 character limit.
2.1.1 - 2023-04-11
- Wrong version number in binary releases
2.1.0 - 2023-04-11
- Added the ability to bruteforce multiple domains simultaneously using the
-d
,--domains
option with the bruteforce command, rather than providing just one domain as an argument. Now, executingpuredns bruteforce wordlist.txt -d domains.txt
will bruteforce all domains listed in the domains.txt file. #13 - Added a new option to use trusted resolvers only:
--trusted-only
. This can help quickly validate small domain lists with less risk of errors due to bad public resolvers. When this option is set,--skip-validation
is also implied. #11 - Introduced the ability to use the * wildcard character when bruteforcing subdomains, enabling users to specify the desired location for word substitution. For example, executing
puredns bruteforce wordlist.txt "www.*.example.com"
will replace * with words from the wordlist, rather than appending the word to the beginning of the domain. - Added a
--debug
global flag to keep intermediate files. Useful to debug massdns or resolver issues.
- Resolvers are now loaded from
~/.config/puredns/resolvers.txt
and~/.config/puredns/resolvers-trusted.txt
by default. If there is aresolvers.txt
file present in the current directory, it still takes precedence. #35
- Number of domains found was not displayed when the
--skip-validation
option was set. - Domain sanitization now strips any remaining
*.
prefix at the beginning of a domain instead of skipping the domain entirely. For example, puredns will try to resolve*.example.com
asexample.com
. - Support running massdns as root. #17 #27
2.0.1 - 2021-06-25
- Wildcard subdomains with only CNAME records were not being filtered properly. #14
2.0.0 - 2021-05-03
- Stdin can be used in place of the domain list or wordlist files. See help for examples.
- Quiet flag (
-q
,--quiet
) to silence output. Only valid domains are output to stdout when quiet mode is on. #4 - Attempt to detect DNS load balancing during wildcard detection. Use flag
-n
,--wildcard-tests
to specify the number of DNS queries to perform to detect all the possible IPs for a subdomain. - Add ability to specify a maximum batch size of domains to process at once during wildcard detection with
--wildcard-batch
. This is to help prevent memory issues that can happen on very large lists (70M+ wildcard subdomains). - Progress bar during wildcard detection.
- Selected options are displayed at the start of the program.
- Add sponsors command to view active Github sponsors.
- Complete rewrite in Go for more stability and to prepare new features.
- Some command line flags have changed to be POSIX compliant, use
--help
on commands to see the changes. - Rewrite wildcard detection algorithm to be more robust.
- Remove dependency on 'pv' and do progress bar and rate limiting internally instead.
- Massdns output file is now written in
-o Snl
format. - A default list of public resolvers is no longer provided as a reference. Best results will be obtained by curating your own list, for example using public-dns.info and DNS Validator.
- Remove
--write-answers
command line option since the full wildcard answers are no longer kept in memory to optimize for large files. This might come back in a future release if requested.
- Massdns and wildcard detection will retry on SERVFAIL errors.
- Add missing entries in the massdns cache that resulted in a higher number of DNS queries being made during wildcard detection.
- Fix many edge cases happening around wildcard detection.
1.0.3 - 2021-04-12
- Remove Cloudflare DNS from the list of trusted resolvers. Here's why.
- Increase the default rate limit per trusted resolver to 50.
- Adjust massdns command line parameter
-s
to limit the size of the initial burst of queries sent to the trusted resolvers.
1.0.2 - 2021-03-22
- Fix a badly handled exception during wildcard detection that was halting the process.
1.0.1 - 2020-10-15
- Fix a bug where valid subdomains were not saved to a file. #1
1.0.0 - 2020-08-02
- Initial implementation.