Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/pogzyb/czdsdump

Download domain data from the Centralized Zone Database Service
https://github.com/pogzyb/czdsdump

centralized-zone-database-service cybersecurity czds domain-names research threat-hunting threat-intelligence

Last synced: 12 days ago
JSON representation

Download domain data from the Centralized Zone Database Service

Host: GitHub
URL: https://github.com/pogzyb/czdsdump
Owner: pogzyb
License: mit
Created: 2024-04-22T14:58:16.000Z (8 months ago)
Default Branch: main
Last Pushed: 2024-04-30T00:35:59.000Z (8 months ago)
Last Synced: 2024-05-01T01:40:24.736Z (8 months ago)
Topics: centralized-zone-database-service, cybersecurity, czds, domain-names, research, threat-hunting, threat-intelligence
Language: Go
Homepage:
Size: 27.3 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# czdsdump

Utility for dumping zone files from the CZDS to an S3 Bucket or FileSystem.

> The Centralized Zone Data Service (CZDS) is an online portal where any interested party can request access to the Zone Files provided by participating generic Top-Level Domains (gTLDs).

Create ICANN account: https://czds.icann.org/home

### Examples

Local
```
git clone https://github.com/pogzyb/czdsdump.git

cd czdsdump
go build -o czdsdump .

# all zones
./czdsdump download all -v -o /tmp -u -p

# one zone (".co")
./czdsdump download one -v -o /tmp -u -p -z co
```

Docker
```
docker pull ghcr.io/pogzyb/czdsdump:latest
docker run -v ./data:/tmp ghcr.io/pogzyb/czdsdump download all -v -o /tmp -u -p
```

Dump to an S3 bucket
```
# assumes you have aws credentials set in `.env.aws`
docker pull ghcr.io/pogzyb/czdsdump:latest
docker run --env-file .env.aws ghcr.io/pogzyb/czdsdump download all -v -o s3://mybucket/czds/2024-04-28/ -u -p
```

Dump only one zone
```
# assumes you have aws credentials set in `.env.aws`
docker pull ghcr.io/pogzyb/czdsdump:latest
# only downloads data from ".com" zone
docker run -v ./data:/tmp ghcr.io/pogzyb/czdsdump download one -v -o /tmp -u -p -z com
```

### Resources / Information

What are these files?

> The registry operator’s zone data contains the mapping of domain names, associated name server names, and IP addresses for those name servers. These details are updated by the registry operator for its respective TLDs whenever information changes or a domain name is added or removed.
> https://czds.icann.org/help

In short, these files are .txt files containing the domain names for the given registry. For example, the zone file for ".com" would contain all the registered .com domain names at that given time.

How often should you dump these files?

> ICANN begins the daily collection of zone files from the registry operators at 00:00 UTC, and the process takes no more than 6 hours. This means that all updated zone files are available for download from CZDS after 06:00 UTC. End users of CZDS can freely download each of the latest available zone files once their access request has been approved by the registry operator of the TLD.

> Zone files are updated once per day starting at 00:00 UTC, so an end user of CZDS should only download each TLD zone file a maximum of once per 24-hour period.
> https://czds.icann.org/help