enabled the wildcard detection

caffix · caffix · commit 508fd4d9bbd6 · 2025-03-19T21:47:05.000-04:00
diff --git a/engine/plugins/support/resolvers.go b/engine/plugins/support/resolvers.go
@@ -85,7 +85,7 @@ var baselineResolvers = []baseline{
 
 var trusted *pool.Pool
 
-//var detector *wildcards.Detector
+var detector *wildcards.Detector
 
 func PerformQuery(name string, qtype uint16) ([]dns.RR, error) {
 	msg := utils.QueryMsg(name, qtype)
@@ -95,9 +95,9 @@ func PerformQuery(name string, qtype uint16) ([]dns.RR, error) {
 
 	resp, err := dnsQuery(msg, trusted, 10)
 	if err == nil && resp != nil {
-		/*if wildcardDetected(resp, detector) {
+		if wildcardDetected(resp, detector) {
 			return nil, errors.New("wildcard detected")
-		}*/
+		}
 		if len(resp.Answer) > 0 {
 			if rr := utils.AnswersByType(resp, qtype); len(rr) > 0 {
 				return rr, nil
@@ -136,10 +136,14 @@ func dnsQuery(msg *dns.Msg, r *pool.Pool, attempts int) (*dns.Msg, error) {
 }
 
 func trustedResolvers() *pool.Pool {
-	timeout := 3 * time.Second
+	timeout := time.Second
+	cpus := runtime.NumCPU()
+	// wildcard detector
+	serv := servers.NewNameserver("8.8.8.8", timeout)
+	wconns := conn.New(cpus, selectors.NewSingle(serv))
+	detector = wildcards.NewDetector(serv, wconns, nil)
+	// the server pool
 	sel := selectors.NewAuthoritative(timeout, servers.NewNameserver)
-	conns := conn.New(runtime.NumCPU(), sel)
-	//serv := servers.NewNameserver("8.8.8.8", timeout)
-	//detector = wildcards.NewDetector(serv, conns, nil)
+	conns := conn.New(cpus, sel)
 	return pool.New(0, sel, conns, nil)
 }
diff --git a/go.mod b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/openrdap/rdap v0.9.1
 	github.com/owasp-amass/asset-db v0.19.2
 	github.com/owasp-amass/open-asset-model v0.14.0
-	github.com/owasp-amass/resolve v0.9.7-0.20250319054635-4385de887f74
+	github.com/owasp-amass/resolve v0.9.7-0.20250319234251-34c12575c661
 	github.com/samber/slog-common v0.18.1
 	github.com/samber/slog-syslog/v2 v2.5.2
 	github.com/stretchr/testify v1.10.0
diff --git a/go.sum b/go.sum
@@ -1158,6 +1158,8 @@ github.com/owasp-amass/open-asset-model v0.14.0 h1:ycTSBJLgNviN7tnTki4XPqk3G5QoZ
 github.com/owasp-amass/open-asset-model v0.14.0/go.mod h1:DOX+SiD6PZBroSMnsILAmpf0SHi6TVpqjV4uNfBeg7g=
 github.com/owasp-amass/resolve v0.9.7-0.20250319054635-4385de887f74 h1:JEGnytmvK9I1LuhuxmlLbxZxJf407XmO1RxhjeCApbU=
 github.com/owasp-amass/resolve v0.9.7-0.20250319054635-4385de887f74/go.mod h1:hCEHzM1Ugo2b/i+0mHrT05syKHdkmQIEAOCKmh6TSPs=
+github.com/owasp-amass/resolve v0.9.7-0.20250319234251-34c12575c661 h1:B8rgrYFketO3yJjvyxEbRvFgY9pKr7bscNn2LnickDQ=
+github.com/owasp-amass/resolve v0.9.7-0.20250319234251-34c12575c661/go.mod h1:hCEHzM1Ugo2b/i+0mHrT05syKHdkmQIEAOCKmh6TSPs=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pascaldekloe/goe v0.1.0/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/performancecopilot/speed/v4 v4.0.0/go.mod h1:qxrSyuDGrTOWfV+uKRFhfxw6h/4HXRGUiZiufxo49BM=
