Show HN: I've created the fastest open-source DNS bruteforcer using XF_ADP
github.comHey HN! I've done a lot of work with querying large amounts of DNS scanning recently for my own projects, and I've found that the current available tools (massdns, dnsx, zdns) were lackluster in the performance and accuracy aspect.
Recently, I've learned about XDP and AF_XDP, which allows user-space programs to have a fast-path through the kernel and skip a large chunk of networking done by the kernel. This allows us to directly interact with the network interface TX queues, and send a lot of traffic very fast.
I initially started to do this because I was curious if it would work or not, but eventually I saw that it worked too well, so I polished it a little bit and released it as open-source.
Happy to answer any questions.
Does this have logic to set packet rate-limits per-nameserver? Many name servers have per-IP rate limits. Most defaults are fairly high but I am curious if you mitigate this by ensuring no single name server gets more than user-definable packets per second.
What will your DNS provider say to this? And your hoster after the DNS provider black^W forbidlisted them?
// No practical experience in this field, just wondering