Sends Telegram Message if the targeted DNS Query is made.
This Tool is very useful as it replaces the Excel-Sheets and manual grepping of the named.log file on your Bind-Server. You can inject payloads with IDs and describe the payload-place in a single file. If the Payload is ever executed you get an telegram message on your Telegram. I Hope no one ever misses a XXE or SSRF Bug anymore. :)
File for Grepping
133701-xxe yahoo.com/upload#01.01.2020
133742-ssrf foo.bar/upload#01.02.2020
- git clone https://github.com/Rdago/OOB-DNS-Notifier.git
- Set up your own Telegram bot with the help of @Botfather (see Tutorial below)
- Fill in the Chat-ID, Bot ID and where the File for Grepping is placed
- put this skript into your crontab like so:
@reboot /bin/bash /path/to/skript/monitor.sh
I build myself a really ugly but working UI on my Webspace in order to add & delete the Grepping Information so I have a nice overview of my payloads out in the wild and where they belong.
This Tutorial is very good at explaining it.
Look at this automated Skript on GitHub