X3-DNS is a robust and user-friendly DNS vulnerability assessment tool designed to help users identify and mitigate potential security risks in their domain's DNS configuration. This tool performs comprehensive checks for common DNS vulnerabilities, including SPF, DKIM, DMARC, DNSSEC, MX, and CAA records, providing detailed results and actionable recommendations to enhance DNS security.
- SPF Record Validation: Ensures the presence and correctness of SPF records to prevent email spoofing.
- DKIM Record Check: Searches for DKIM records using common selectors to verify email integrity.
- DMARC Record Verification: Confirms the existence of DMARC records to enforce email authentication policies.
- DNSSEC Configuration Check: Validates DNSSEC setup to protect against DNS spoofing and cache poisoning.
- MX Record Validation: Checks for valid MX records to ensure reliable email delivery.
- CAA Record Validation: Ensures the presence of CAA records to restrict certificate issuance to authorized CAs.
X3-DNS leverages the dnspython library to perform DNS queries and validate the presence and correctness of various DNS records. The tool is built with a user-friendly interface using tkinter and ttkthemes, allowing users to easily input domains, select vulnerabilities to check, and view results in a structured format.
To run X3-DNS from source, follow these steps:
-
Clone the Repository:
git clone https://github.com/mubbashirulislam/X3-DNS.git cd X3-DNS -
Install Requirements: Ensure you have Python 3.x installed. Then, install the required Python packages using pip:
pip install -r requirements.txt
-
Run the Tool: Execute the tool using Python:
python X3-DNS.py
The tool requires the following Python packages, which are listed in requirements.txt:
tkinter: For building the graphical user interface.ttkthemes: For applying modern themes to the tkinter interface.dnspython: For performing DNS queries and record validation.
For users who prefer not to install Python and dependencies, an executable version of X3-DNS is available. This version can be run out of the box on Windows systems without any additional setup.
- Download the Executable: X3-DNS.exe
- Run the Executable: Simply double-click the
X3-DNS.exefile to launch the tool.
- Enter Domain: Input the domain you wish to check in the provided text box.
- Select Vulnerabilities: Choose which DNS vulnerabilities to check by selecting the appropriate checkboxes.
- Check DNS: Click the "Check DNS" button to start the analysis.
- View Results: The results will be displayed in the scrollable text area, highlighting any vulnerabilities found.
- Save Report: Optionally, save the results to a text file for further analysis.
Contributions are welcome! If you have suggestions for improvements or new features, feel free to open an issue or submit a pull request. Please ensure your contributions adhere to the project's coding standards and include appropriate tests.
This project is licensed under the MIT License. See the LICENSE file for details.
For any questions or support, please contact Your Name.