add history dns

pull/208/head
Sebdraven 2018-07-11 09:39:09 +02:00
parent dcdb6e5895
commit 54d996cb00
1 changed files with 35 additions and 7 deletions

View File

@ -295,11 +295,6 @@ def expand_whois(api, domain):
} }
) )
# TODO File "modules/expansion/dnstrails.py", line 230, in expand_whois
# 'values': [item_registrant['email'],
# TypeError: 'NoneType' object is not subscriptable
except APIError as e: except APIError as e:
misperrors['error'] = e misperrors['error'] = e
print(e) print(e)
@ -332,6 +327,37 @@ def expand_history_ipv4_ipv6(api, domain):
return r, status_ok return r, status_ok
def expand_history_dns(api, domain):
r = []
status_ok = False
try:
results = api.history_dns_ns(domain)
if results:
status_ok = True
if 'records' in results:
for record in results['records']:
if 'values' in record:
for item in record['values']:
r.append(
{'types': ['domain|ip'],
'values': [
'%s|%s' % (domain, item['nameserver'])],
'categories': ['Network activity'],
'comment': 'history DNS of %s last seen: %s first seen: %s' %
(domain, record['last_seen'],
record['first_seen'])
}
)
except APIError as e:
misperrors['error'] = e
return r, status_ok
def __history_ip(results, domain, type_ip='ip'): def __history_ip(results, domain, type_ip='ip'):
r = [] r = []
if 'records' in results: if 'records' in results:
@ -342,14 +368,16 @@ def __history_ip(results, domain, type_ip='ip'):
{'types': ['domain|ip'], {'types': ['domain|ip'],
'values': ['%s|%s' % (domain, item[type_ip])], 'values': ['%s|%s' % (domain, item[type_ip])],
'categories': ['Network activity'], 'categories': ['Network activity'],
'comment': 'last seen: %s first seen: %s' % 'comment': 'History IP on securitytrails %s '
(record['last_seen'], 'last seen: %s first seen: %s' %
(domain, record['last_seen'],
record['first_seen']) record['first_seen'])
} }
) )
return r return r
def introspection(): def introspection():
return mispattributes return mispattributes