Cyber security

pugDNS : Revolutionizing DNS Query Speed And Accuracy For Advanced Networking Needs

pugDNS is an experimental, high-performance DNS query tool designed to facilitate fast and accurate bulk DNS lookups.

It leverages AF_XDP (Address Family eXpress Data Path) sockets to achieve significantly higher query rates compared to traditional DNS tools.

This makes it particularly useful for security researchers, network administrators, and penetration testers involved in DNS reconnaissance and domain discovery tasks.

Key Features

  • High Performance: pugDNS uses AF_XDP sockets to directly inject DNS queries into the L2 layer of the kernel, bypassing the traditional network stack. This results in faster bandwidth and lower latency compared to other tools.
  • Experimental eBPF Support: It includes beta support for receiving DNS packets using an eBPF filter, enhancing its capabilities for network packet handling.
  • Accuracy and Speed: Benchmarks show that pugDNS is significantly faster than popular alternatives like massdns, zdns, and dnsx. It achieved 100% accuracy in tests with a large domain wordlist.

In benchmarks conducted on a server with a 1Gbit/s port, pugDNS outperformed other tools:

  • 3.3x faster than massdns
  • 12.5x faster than zdns
  • 29.6x faster than dnsx

These benchmarks highlight pugDNS’s potential for handling large-scale DNS queries efficiently.

Currently, pugDNS requires using tools like tcpdump to capture responses, as it does not handle this internally.

Future developments aim to address this limitation by adding support for sniffing DNS responses directly.

Other planned features include support for AF_XDP raw sockets and handling multiple nameservers and subdomains files as input.

To use pugDNS, users can clone the repository from GitHub and build it using Go:

bashgit clone https://github.com/c3l3si4n/pugdns
go generate && go build
./pugdns

The project credits the slavc/xdp library for its AF_XDP functionality in Go.

pugDNS offers a promising solution for those needing high-speed DNS query capabilities. While still in development, its performance advantages make it a tool worth considering for large-scale DNS reconnaissance tasks.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtoolspugDNS
1 year ago

Recent Posts

How UDP Works and Why It Is So Fast

When people ask how UDP works, the simplest answer is this: UDP sends data quickly…

3 days ago

How EDR Killers Bypass Security Tools

Endpoint Detection and Response (EDR) solutions have become a cornerstone of modern cybersecurity, designed to…

6 days ago

AI-Generated Malware Campaign Scales Threats Through Vibe Coding Techniques

A large-scale malware campaign leveraging AI-assisted development techniques has been uncovered, revealing how attackers are…

6 days ago

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

7 days ago

Fake VPN Download Trap Can Steal Your Work Login in Minutes

People trying to securely connect to work are being tricked into doing the exact opposite.…

1 week ago

This Android Bug Can Crack Your Lock Screen in 60 Seconds

A newly disclosed Android vulnerability is making noise for a good reason. Researchers showed that…

2 weeks ago