Spring Tool Round-Up

A quick round-up of some new tools we’ve been working on.

Lookup IPs and Domains

IP-enrich is a CLI tool to lookup the location and ASN range of an IP address or domain.

Give it an IP and it’ll do a reverse lookup for a hostname, the location and ASN range for the address:

❯ ip-enrich -i 1.1.1.1
Looking up address: 1.1.1.1
Resolving IP "1.1.1.1"
Got domain "one.one.one.one. (reverse lookup)" for IP "1.1.1.1"
Got city and ASN information for IP "1.1.1.1"

Done with lookups. Got 1 result.

┏━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┳━━━━━━━━━┳━━━━━━━━━┳━━━━━━┳━━━━━━━━━━━━━┳━━━━━━━━━━━━━━━━━━━━━━━━━━┓
┃ Domain                            ┃ IP      ┃ Country ┃ City ┃ Subdivision ┃ ASN                      ┃
┡━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━╇━━━━━━━━━╇━━━━━━━━━╇━━━━━━╇━━━━━━━━━━━━━╇━━━━━━━━━━━━━━━━━━━━━━━━━━┩
│ one.one.one.one. (reverse lookup) │ 1.1.1.1 │         │      │             │ AS13335 Cloudflare, Inc. │
└───────────────────────────────────┴─────────┴─────────┴──────┴─────────────┴──────────────────────────┘

Fin.

It also works on domains, and lists of IPs or domains. You can add flags to output as JSON or a Markdown table.

It uses the Maxmind City and ASN databases for those lookups.

Discover subdomains with Project Discovery tools

ProjectDiscovery has some great tools for discovering DNS records, subdomains, and websites (let alone Nuclei). They all work well from the command line, and can be chained together, but we still wanted to put them into a single program to discover details about live websites for a domain.

Hence recon-wrap, which uses DNSX and subfinder to discover subdomains of an input domain. It does the following:

1. Takes a domain as input.
2. Runs subfinder to discover subdomains of the domain (the config file is key for adding your API keys).
3. Runs all discovered subdomains through DNSX to check they have a live address.
4. Runs all live subdomains through HTTPX to get the website details.

It outputs a Markdown file with a summary table, and then detailed tables for all discovered websites.

Make a Markdown Table from a CSV file

Finally, a simple tool: csv-to-md takes a CSV file as input and outputs the same data as a Markdown table:

❯ cat test.csv 
Domain,IP,Country,City,Subdivision,ASN,Organization
bbc.co.uk,151.101.192.81,United States,New York,New York,AS54113,"Fastly, Inc."
meantimecyber.com,172.67.155.92,Unknown,Unknown,Unknown,AS13335,"Cloudflare, Inc."

❯ ./csv-to-md -i test.csv 
| Domain | IP | Country | City | Subdivision | ASN | Organization |
| --- | --- | --- | --- | --- | --- | --- |
| bbc.co.uk | 151.101.192.81 | United States | New York | New York | AS54113 | Fastly, Inc. |
| meantimecyber.com | 172.67.155.92 | Unknown | Unknown | Unknown | AS13335 | Cloudflare, Inc. |