along-yundanfengqing / dnshunter Goto Github PK
View Code? Open in Web Editor NEWThis project forked from slacker007/dnshunter
DNShunter is a python based module that is written for MercenaryHuntFramework & Mercenary-Linux. Currently it reads in .pcap files and extracts the DNS Queries and Answers. In addition to extracting the queries & answers, it also performs a geo-lookup of the domains & the associated IP's. This makes it easy to catch attacks such as DNS Cache Poisoning and DNSBeacons. EX: [Q] firstnationalbank.com -> resolving to Indonesia
License: MIT License