python - Human readable form of DNS lookup -


i have got simple idea in mind want try out. have browser, chrome instance, , want search ip of domain name, www.google.com. use windows 7 , have set dns lookup properties manual , have given address 127.0.0.1 server (written in python running). started server , see dns query weird in showing faces this:

waiting connection.........  .........recieved :  ('127.0.0.1', 59339)  'v"\x01\x00\x00\x01\x00\x00\x00\x00\x00\x00\x06teredo\x04ipv6\tmicrosoft\x03com\x00\x00\x01\x00\x01'

the waiting connection , received from server. how breakdown form(a human readable form) of message??

this server code(quiet elementary still):

here code:

from time import sleep  import socket  host=''  port=53  addr_list=(host,port)  buf_siz=1024  udp=socket.socket(socket.af_inet,socket.sock_dgram)  udp.bind(addr_list)  while true:      print 'waiting connection.........'      data,addr = udp.recvfrom(buf_siz) print '.........recieved : ',addr      sleep(3)      print data

if want analyse query data using python, recommend excellent scapy library (http://www.secdev.org/projects/scapy/) it's got decoding (and building!) routines many network protocols including dns.

here's original program scapy decoding added:

from time import sleep import socket scapy.all import dns #bring in scapy's dns decoder  host='' port=53 addr_list=(host,port) buf_siz=1024 udp=socket.socket(socket.af_inet,socket.sock_dgram) udp.bind(addr_list) while true:     print 'waiting connection.........'     data,addr = udp.recvfrom(buf_siz) print '.........recieved : ',addr     sleep(3)     #decode dns data     decoded = dns(data)     #print decoded packet     decoded.show()

for raw packet in question prints:

###[ dns ]###   id        = 22050   qr        = 0l   opcode    = query   aa        = 0l   tc        = 0l   rd        = 1l   ra        = 0l   z         = 0l   rcode     = ok   qdcount   = 1   ancount   = 0   nscount   = 0   arcount   = 0   \qd        \    |###[ dns question record ]###    |  qname     = 'teredo.ipv6.microsoft.com.'    |  qtype     = 12288    |  qclass    = 256          = none   ns        = none   ar        = none ###[ raw ]###      load      = '\x01'

scapy installation instructions here: http://www.secdev.org/projects/scapy/doc/installation.html#installing-scapy-v2-x

if use ubuntu, sudo apt-get install python-scapy

enjoy!


Comments

Post a Comment

Popular posts from this blog

c++ - Is it possible to compile a VST on linux? -

for class project i'm attempting write vst plugin backed cuda. current cuda workflow on linux box, i'd prefer compile , link there. according wikipedia , should possible (i couldn't find steinberg documentation relevant linux) can't find makefile or instructions on how build if aren't using xcode or visual studio. i'm vst 3 sdk doesn't support linux. when try compile plugin under linux, error: ./base/source/fatomic.cpp:39:30: fatal error: libkern/osatomic.h: no such file or directory this issue caused following code in "vst3 sdk/base/source/fatomic.cpp" #if mac #include <libkern/osatomic.h> #if mac_os_x_version_min_required > mac_os_x_version_10_4 #define native_atomic_type (volatile int32_t*) #else #define native_atomic_type (int32_t*) #endif #elif windows #include <windows.h> #endif but hope compiling under linux work vst sdk 2.4. reading. jvstwrapper seems run on lin...
Read more

c# - SharpSVN - How to get the previous revision? -

i trying find efficient way previous revision of file text comparison using sharpsvn. using (svnclient c = new svnclient()) { c.authentication.defaultcredentials = new networkcredential( configurationmanager.appsettings.get("svnserviceusername") , configurationmanager.appsettings.get("svnservicepassword") , configurationmanager.appsettings.get("svnservicedomain") ); c.authentication.sslservertrusthandlers += new eventhandler<svnsslservertrusteventargs>(authentication_sslservertrusthandlers); collection<svnfileversioneventargs> fileversioncollection = new collection<svnfileversioneventargs>(); svnrevisionrange range = new svnrevisionrange(0, this.hooks.revision); svnfileversionsargs args = new svnfileversionsargs(); args.retrieveproperties = true; args.range = range; foreach (svnchangeitem item in log.changedpaths) { string path = this.repositorypath + it...
Read more

php cli reading files and how to fix it? -

while using php cli in ubuntu got apache web server cant read file can while using in browser. , error shows nothing , next used code testing purposes : <? $handle = fopen("testfile.txt", "r"); if ($handle) { while (($buffer = fgets($handle, 4096)) !== false) { echo $buffer; } if (!feof($handle)) { echo "error: unexpected fgets() fail\n"; } if(!is_readable($handle) { die("not readable"); } fclose($handle); } ?> how fix ? edit : after removing '@' before fopen got following error fopen(testfile.txt): failed open stream: no such file or directory in /var/www/log/ka.php on line 2 when run script through cli, uses shell's working directory, in opposition file's directory (which apache hands current directory). important you, since fopen call depends on relative path; , relative paths resolved relatively working directory, not script. to have script behave apache, eit...
Read more