creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-15 23:44:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/performing-dns-enumeration-and-zone-transfer/references/api-reference.md
T
mukul975 27c6414ca5 Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills 
Complete skill folder anatomy across all cybersecurity skills:
- scripts/agent.py: 80-150 line Python agents using real libraries (impacket,
  boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.)
- references/api-reference.md: real API documentation with method signatures
- LICENSE: MIT license for all skill folders
2026-03-10 21:02:12 +01:00

64 lines
2.1 KiB
Markdown
Raw Blame History

# API Reference: Performing DNS Enumeration and Zone Transfer
## dnspython Library
| Function/Class | Description |
|----------------|-------------|
| `dns.resolver.resolve(domain, rdtype)` | Query DNS records by type |
| `dns.zone.from_xfr(xfr_response)` | Parse zone transfer response |
| `dns.query.xfr(nameserver, domain)` | Perform AXFR zone transfer |
| `dns.rdatatype.to_text(rdtype)` | Convert record type to string |
| `dns.resolver.Resolver()` | Custom resolver with timeout settings |
## DNS Record Types
| Type | Description |
|------|-------------|
| A | IPv4 address record |
| AAAA | IPv6 address record |
| MX | Mail exchange server |
| NS | Authoritative nameserver |
| TXT | Text record (SPF, DKIM, DMARC) |
| SOA | Start of Authority |
| CNAME | Canonical name alias |
| SRV | Service location record |
| CAA | Certificate Authority Authorization |
| AXFR | Full zone transfer request |
## Email Security Records
| Record | Location | Description |
|--------|----------|-------------|
| SPF | `domain TXT` | Authorized mail sender IPs |
| DMARC | `_dmarc.domain TXT` | Email authentication policy |
| DKIM | `selector._domainkey.domain TXT` | Email signing public key |
## Key Libraries
- **dnspython** (`pip install dnspython`): Full-featured DNS toolkit for Python
- **python-nmap** (optional): Network port scanning for DNS services
- **sublist3r** (optional): Subdomain enumeration using search engines
## Configuration
| Variable | Description |
|----------|-------------|
| Target domain | Authorized target domain for enumeration |
| Resolver timeout | DNS query timeout (default 3 seconds) |
| Wordlist | Subdomain brute-force dictionary |
## Common Subdomain Wordlists
| Source | Description |
|--------|-------------|
| SecLists DNS | `Discovery/DNS/subdomains-top1million-5000.txt` |
| Assetnote | Best-DNS-Wordlist from Assetnote |
| Custom | Industry-specific subdomain patterns |
## References
- [dnspython Documentation](https://dnspython.readthedocs.io/)
- [OWASP DNS Enumeration](https://owasp.org/www-community/attacks/DNS_Enumeration)
- [SecLists](https://github.com/danielmiessler/SecLists)
- [Amass OWASP](https://github.com/owasp-amass/amass)
Reference in New Issue View Git Blame Copy Permalink