dig like command line utility to understand DNSSEC
Project description
digsec
dig like command line utility to understand DNSSEC.
Install
pip install digsec
Usage
Just run digsec to see options and help, or see this blog post https://metebalci.com/blog/a-minimum-complete-tutorial-of-dnssec/ .
Hints
-
digsec do not add DNS flags implicitly. You might need to use +rd (recursive desired) often.
-
see scripts/validate_second_level_domain.sh and run it to see a full validation.
Notes
ECDSAP384SHA384, RSA-512 and SHA-384 support is not tested. If you know a domain using these algorithms, please let me know.
Release History
0.7.1:
- rsa update in 0.7 broke the build, this version fixes the issue.
0.7:
- required packages (rsa and ecdsa) are updated to latest version
0.6:
- Socket timeout support and +timeout flag.
0.5:
- Preliminary support for ECDSAP384SHA384, RSA-512, SHA-384.
- Server the DNS packet is sent is written under NETWORK COMMUNICATION line.
- digsec version is written at first line in the output as digsec vX.
0.4:
- ECDSAP256SHA256 implemented.
- @server option added.
- validate_second_level_domain.sh script added.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
digsec-0.7.1.tar.gz
(19.9 kB
view hashes)
