Skip to content

v0.9.5
Compare
Choose a tag to compare
@mosajjal mosajjal released this 15 Aug 06:12
· 136 commits to main since this release
v0.9.5
7ebb729
This commit was signed with the committer’s verified signature.
mosajjal Ali
GPG key ID: 1031870842DEF016
Learn about vigilant mode.

With the changes in this version, dnsmonster is closer to reach 1.x. Please open issues and discussions if there's any issues.

BREAKING:

  • command-line arguments are now case-insensitive
  • ini config file has changed to all lowercase (old .ini needs to be updated)
  • new --filter input syntax allows a gzip'd and base64'd filter to be passed on as a command-line argument. IMPORTANT NOTE: this feature means command line arguments being sent to dnsmonster can potentially execute ANY BPF program on your machine. be careful!

if you compile dnsmonster with no libpcap support (-tags nolibpcap), you'll see the following at start:

dnsmonster has been compiled without libpcap support. tcpdump-style BPF filters are not directly supported.
to generate a filter, use tcpdump and unix ulitities like so: 
tcpdump -ddd "port 53 and not vlan 1024" | gzip -9 | base64 -w0 
then provide the output base64 as a filter to dnsmonster

in above example, you can run a libpcap-less dnsmonster this way:

dnsmonster --devname=lo --stdoutoutputype=1 \
--filter H4sIAAAAAAAAA3WO0Q0AIQhD/5nCEaRW9PZf7EDU3M9FE+HZFkBhLXEUAvV3lsaOLpwLowZGCNpShMZSqsPv8XeuX0bZLlxKhZuDpgseynkHtP8B85Pvi9hTLKg+KjpGrk0ZONUO8kmHnU2DWeYYlNxNlRfV0U3mAQEAAA==

Other changes:

  • dnsmonster is now available for each release in many platforms and is completely non-dependent on libpcap
  • Go 1.19 and various dependency version bumps
Assets 30
Loading