From 37bc01ae214b71e1ca1e850d7b09bc5caf5fc3a5 Mon Sep 17 00:00:00 2001 From: Kevin Holvoet Date: Wed, 21 Apr 2021 12:09:59 +0200 Subject: [PATCH 1/3] Created new Stackpath CDN IP list --- lists/stackpath/list.json | 215 ++++++++++++++++++++++++++++++++++++ tools/generate-stackpath.py | 39 +++++++ 2 files changed, 254 insertions(+) create mode 100644 lists/stackpath/list.json create mode 100755 tools/generate-stackpath.py diff --git a/lists/stackpath/list.json b/lists/stackpath/list.json new file mode 100644 index 0000000..6d6ac68 --- /dev/null +++ b/lists/stackpath/list.json @@ -0,0 +1,215 @@ +{ + "description": "List of known Stackpath (Highwinds) CDN IP ranges (https://support.stackpath.com/hc/en-us/articles/360001091666-Whitelist-CDN-WAF-IP-Blocks)", + "list": [ + "102.133.165.127/32", + "102.133.168.247/32", + "103.209.192.93/32", + "103.228.104.0/24", + "103.66.28.0/22", + "104.156.232.232/32", + "104.214.147.166/32", + "104.214.150.207/32", + "104.238.157.42/32", + "108.61.185.90/32", + "120.26.119.191/32", + "146.88.130.128/25", + "149.154.157.239/32", + "149.154.159.21/32", + "149.28.235.77/32", + "149.28.254.195/32", + "151.139.0.0/17", + "151.236.14.231/32", + "151.236.14.238/32", + "151.236.15.26/32", + "151.236.18.167/32", + "151.236.20.95/32", + "151.236.21.35/32", + "151.236.21.87/32", + "151.236.23.142/32", + "151.236.23.78/32", + "151.236.24.35/32", + "151.236.24.50/32", + "158.255.208.86/32", + "173.245.194.0/24", + "173.245.208.64/26", + "173.245.210.64/26", + "173.245.216.64/26", + "173.245.218.64/26", + "184.179.88.128/25", + "184.179.90.128/25", + "185.157.232.52/32", + "185.157.233.153/32", + "192.166.245.71/32", + "192.166.245.98/32", + "2001:1938:7001:1::/64", + "2001:1938:7002:1::/64", + "2001:1938:7003:1::/64", + "2001:1938:7004:1::/64", + "2001:1938:7005:1::/64", + "2001:1938:7006:1::/64", + "2001:1938:7007:1::/64", + "2001:1938:7008:1::/64", + "2001:19f0:5800:8bfc:5400:ff:fe1c:5b87/64", + "2001:19f0:5800:8d34:5400:ff:fe1c:5b8c/64", + "2001:19f0:6000:9301:5400:00ff:fe1c:0085/64", + "2001:19f0:6000:95c5:5400:ff:fe1c:88/64", + "2001:19f0:7000:9aa1:5400:ff:fe1c:1090/64", + "2001:19f0:7000:9c35:5400:ff:fe1c:4562/64", + "2001:19f0:7401:834f:5400:ff:fe1c:c96/64", + "2001:19f0:7401:844e:5400:ff:fe1c:c99/64", + "2001:19f0:8000:8652:5400:ff:fe1c:45c2/64", + "2001:19f0:8000:8706:5400:ff:fe1c:45c4/64", + "2001:4801:7824:101:be76:4eff:fe10:24dc/64", + "2001:4801:7824:101:be76:4eff:fe10:55c6/64", + "2001:4DE0:110::/64", + "2001:4DE0:2010::/64", + "2001:4DE0:210::/64", + "2001:4DE0:2110::/64", + "2001:4DE0:2210:1::/64", + "2001:4DE0:2210::/64", + "2001:4DE0:2310::/64", + "2001:4DE0:3010::/64", + "2001:4DE0:3110::/64", + "2001:4DE0:4010::/64", + "2001:4DE0:410::/64", + "2001:4DE0:4110::/64", + "2001:4DE0:4310::/64", + "2001:4DE0:5010::/64", + "2001:4DE0:510::/64", + "2001:4DE0:610::/64", + "2001:4DE0:7001:1::/64", + "2001:4DE0:7002:1::/64", + "2001:4DE0:7003:1::/64", + "2001:57A:300:1100::/64", + "2001:57A:400:1100::/64", + "2001:b60:1000:149:154:157:239:1/112", + "2001:b60:1000:151:236:18:167:1/112", + "205.185.216.0/22", + "207.148.1.50/32", + "209.197.21.0/24", + "209.197.24.0/21", + "209.197.7.0/24", + "209.197.8.0/21", + "209.234.242.0/25", + "213.183.56.187/32", + "213.183.56.71/32", + "23.253.20.207/32", + "23.253.22.201/32", + "2407:1580:1100::/40", + "2407:1580:1200::/40", + "2407:1580:1300::/40", + "2407:1580:1500::/40", + "2407:1580:1600::/40", + "2407:1580:1700::/40", + "2604:6840:1100::/40", + "2604:6840:1200::/40", + "2604:6840:1300::/40", + "2604:6840:1400::/40", + "2604:6840:1500::/40", + "2604:6840:1600::/40", + "2604:6840:1700::/40", + "2604:6840:1800::/40", + "2604:6840:1900::/40", + "2604:6840:1C00:1100::/64", + "2604:6840:1E00::/40", + "2606:CE80:6100:1::/64", + "2606:CE80:6200:1::/64", + "2606:CE80:6300:1::/64", + "2606:CE80:6400:1::/64", + "2606:CE80:6500:1::/64", + "2606:CE80:6600:1::/64", + "2606:CE80:6700:2::/64", + "2606:CE80:6900:1::/64", + "2A0A:E200:1100::/40", + "2A0A:E200:1300::/40", + "2A0A:E200:1400::/40", + "2A0A:E200:1600::/40", + "2A0A:E200:1700::/40", + "2A0A:E200:1900:1100::/64", + "2A0A:E200:1A00::/40", + "2A0A:E200:1C00::/40", + "2a00:1768:1003:151:236:14:231:1/112", + "2a00:1768:1003:151:236:14:238:1/112", + "2a00:1a28:1251:46:246:126:136:1/112", + "2a00:1a28:1251:46:246:93:179:1/112", + "2a00:1a48:7805:113:be76:4eff:fe08:25fa/64", + "2a00:1a48:7805:113:be76:4eff:fe09:1f07/64", + "2a00:1d70:ed15:151:236:23:142:1/112", + "2a00:1d70:ed15:151:236:23:78:1/112", + "2a01:348:99:151:236:21:35:1/112", + "2a01:348:99:151:236:21:87:1/112", + "2a03:f80:354:151:236:24:35:1/112", + "2a03:f80:354:151:236:24:50:1/112", + "2a03:f80:49:149:154:159:21:1/112", + "2a03:f80:49:151:236:15:26:1/112", + "2a03:f80:56:37:235:52:196:1/112", + "2a03:f80:56:37:235:52:70:1/112", + "2a03:f80:7:213:183:56:187:1/112", + "2a03:f80:7:213:183:56:71:1/112", + "2a03:f80:852:151:236:20:95:1/112", + "2a03:f80:852:158:255:208:86:1/112", + "2a07:4580:b0d:82::793a/64", + "2a07:4580:b0d:f::6324/64", + "34.201.233.220/32", + "34.203.52.30/32", + "34.249.164.113/32", + "34.85.22.40/32", + "34.87.56.240/32", + "34.90.24.209/32", + "35.186.155.99/32", + "35.198.12.22/32", + "35.198.52.85/32", + "35.200.117.161/32", + "35.201.16.129/32", + "35.204.22.69/32", + "35.242.210.32/32", + "35.242.213.204/32", + "35.244.107.67/32", + "35.245.0.188/32", + "35.245.111.92/32", + "37.235.52.196/32", + "37.235.52.70/32", + "45.252.191.10/32", + "45.32.129.60/32", + "45.32.179.191/32", + "45.32.183.237/32", + "45.32.225.132/32", + "45.32.45.117/32", + "45.32.52.15/32", + "45.32.69.31/32", + "45.32.94.5/32", + "45.63.90.144/32", + "46.246.126.136/32", + "46.246.93.179/32", + "47.97.251.164/32", + "52.52.23.91/32", + "52.53.106.71/32", + "54.76.234.169/32", + "63.209.33.45/32", + "69.16.133.0/24", + "69.16.176.0/20", + "74.209.134.0/24", + "78.142.19.197/32", + "81.171.105.0/24", + "81.171.106.64/26", + "81.171.112.0/24", + "81.171.60.0/24", + "81.171.61.0/24", + "81.171.68.64/26", + "84.54.49.15/32", + "94.46.144.0/20", + "95.138.170.88/32", + "95.138.175.4/32", + "A0A:E200:1200::/40" + ], + "matching_attributes": [ + "ip-dst", + "ip-src", + "domain|ip", + "ip-dst|port", + "ip-src|port" + ], + "name": "List of known Stackpath CDN IP ranges", + "type": "cidr", + "version": 20210421 +} diff --git a/tools/generate-stackpath.py b/tools/generate-stackpath.py new file mode 100755 index 0000000..d147a4e --- /dev/null +++ b/tools/generate-stackpath.py @@ -0,0 +1,39 @@ +#!/usr/bin/env python3 +# -*- coding: utf-8 -*- + +from generator import download_to_file, get_version, write_to_file, get_abspath_source_file + + +def process(files, dst): + warninglist = { + 'name': "List of known Stackpath CDN IP ranges", + 'version': get_version(), + 'description': "List of known Stackpath (Highwinds) CDN IP ranges (https://support.stackpath.com/hc/en-us/articles/360001091666-Whitelist-CDN-WAF-IP-Blocks)", + 'type': "cidr", + 'list': [], + 'matching_attributes': ["ip-dst", "ip-src", "domain|ip"] + } + + for file in files: + with open(get_abspath_source_file(file), 'r') as f: + ips = f.readlines() + for ip in ips: + warninglist['list'].append(ip.strip()) + + write_to_file(warninglist, dst) + + +if __name__ == '__main__': + sp_base_url = "https://support.stackpath.com/hc/en-us/article_attachments/360083735711/" + uri_list = ['ipblocks.txt'] + sp_dst = 'stackpath' + + to_process = list() + + for uri in uri_list: + url = sp_base_url+uri + file = 'stackpath_{}'.format(uri) + download_to_file(url, file) + to_process.append(file) + + process(to_process, sp_dst) From 68666c298e9ccaaf39360ef41fe2cb172dc0564c Mon Sep 17 00:00:00 2001 From: Kevin Holvoet Date: Wed, 21 Apr 2021 12:10:30 +0200 Subject: [PATCH 2/3] Gave execute permissions to generate_phone_numbers.py --- tools/generate_phone_numbers.py | 0 1 file changed, 0 insertions(+), 0 deletions(-) mode change 100644 => 100755 tools/generate_phone_numbers.py diff --git a/tools/generate_phone_numbers.py b/tools/generate_phone_numbers.py old mode 100644 new mode 100755 From 252c052638f1ddaad0f99d24096e346def9f4aba Mon Sep 17 00:00:00 2001 From: Kevin Holvoet Date: Wed, 21 Apr 2021 13:48:03 +0200 Subject: [PATCH 3/3] Add stackpath to generate_all.sh script --- generate_all.sh | 1 + 1 file changed, 1 insertion(+) diff --git a/generate_all.sh b/generate_all.sh index 3b3bb97..ef52860 100755 --- a/generate_all.sh +++ b/generate_all.sh @@ -23,6 +23,7 @@ python3 generate_moz-top500.py python3 generate-office365.py python3 generate_phone_numbers.py python3 generate-publicdns.py +python3 generate-stackpath.py python3 generate-tlds.py python3 generate_tranco.py python3 generate-university-domain-list.py