Skip to content

Added support for SRV records#24

Open
Mayyhem wants to merge 1 commit intodirkjanm:masterfrom
Mayyhem:master
Open

Added support for SRV records#24
Mayyhem wants to merge 1 commit intodirkjanm:masterfrom
Mayyhem:master

Conversation

@Mayyhem
Copy link

@Mayyhem Mayyhem commented Apr 10, 2025

Hey Dirk-jan! I needed this functionality for a project I'm working on and figured I'd send a PR in case it was useful for others. If there's any other info you'd like me to provide, please let me know! Thanks for the awesome tool!

Before change:

# adidnsdump -u MAYYHEM\\lowpriv -p <password> 10.4.10.100 -r
[-] Connecting to host...
[-] Binding to host
[+] Bind OK
[-] Querying zone for records
[-] Could not resolve node _mssms_mp_sec._tcp (probably no A record assigned to name)
[-] Could not resolve node _mssms_mp_ps2._tcp (probably no A record assigned to name)
[+] Found 30 records, saving to records.csv

# cat records.csv
type,name,value
A,win11,10.4.10.113
A,rits,10.4.10.222
A,rith,10.4.10.212
A,ps2-pss,10.4.10.250
A,ps2-db,10.4.10.251
A,ps1-sup,10.4.10.124
A,ps1-sms,10.4.10.152
A,ps1-slp,10.4.10.125
A,ps1-sec,10.4.10.122
A,ps1-psv,10.4.10.160
A,ps1-pss,10.4.10.150
A,ps1-mp,10.4.10.120
A,ps1-fsp,10.4.10.123
A,ps1-dp,10.4.10.121
A,ps1-db,10.4.10.151
A,ps1-client,10.4.10.111
A,hi3-ps2,10.4.10.230
A,hi2-psv,10.4.10.211
A,hi2-pss,10.4.10.210
A,ForestDnsZones,10.4.10.100
A,DomainDnsZones,10.4.10.100
A,dc,10.4.10.100
A,cas-pss,10.4.10.50
A,cas-db,10.4.10.51
A,attacker,10.4.10.254
?,_mssms_mp_sec._tcp,?
?,_mssms_mp_ps2._tcp,?
NS,_msdcs,dc.mayyhem.com.
A,@,10.4.10.100
NS,@,dc.mayyhem.com.

After change (no additional options):

# adidnsdump -u MAYYHEM\\lowpriv -p <password> 10.4.10.100 -r
[-] Connecting to host...
[-] Binding to host
[+] Bind OK
[-] Querying zone for records
[-] Could not resolve node _mssms_mp_sec._tcp (probably no A record assigned to name)
[-] Could not resolve node _mssms_mp_ps2._tcp (probably no A record assigned to name)
[+] Found 30 records, saving to records.csv

# cat records.csv
type,name,value
A,win11,10.4.10.113
A,rits,10.4.10.222
A,rith,10.4.10.212
A,ps2-pss,10.4.10.250
A,ps2-db,10.4.10.251
A,ps1-sup,10.4.10.124
A,ps1-sms,10.4.10.152
A,ps1-slp,10.4.10.125
A,ps1-sec,10.4.10.122
A,ps1-psv,10.4.10.160
A,ps1-pss,10.4.10.150
A,ps1-mp,10.4.10.120
A,ps1-fsp,10.4.10.123
A,ps1-dp,10.4.10.121
A,ps1-db,10.4.10.151
A,ps1-client,10.4.10.111
A,hi3-ps2,10.4.10.230
A,hi2-psv,10.4.10.211
A,hi2-pss,10.4.10.210
A,ForestDnsZones,10.4.10.100
A,DomainDnsZones,10.4.10.100
A,dc,10.4.10.100
A,cas-pss,10.4.10.50
A,cas-db,10.4.10.51
A,attacker,10.4.10.254
?,_mssms_mp_sec._tcp,?
?,_mssms_mp_ps2._tcp,?
NS,_msdcs,dc.mayyhem.com.
A,@,10.4.10.100
NS,@,dc.mayyhem.com.

After change (with --srv option set):

# adidnsdump -u MAYYHEM\\lowpriv -p <password> 10.4.10.100 -r --srv
[-] Connecting to host...
[-] Binding to host
[+] Bind OK
[-] Querying zone for records
[+] Found 44 records, saving to records.csv

# cat records.csv
type,name,value
A,win11,10.4.10.113
A,rits,10.4.10.222
A,rith,10.4.10.212
A,ps2-pss,10.4.10.250
A,ps2-db,10.4.10.251
A,ps1-sup,10.4.10.124
A,ps1-sms,10.4.10.152
A,ps1-slp,10.4.10.125
A,ps1-sec,10.4.10.122
A,ps1-psv,10.4.10.160
A,ps1-pss,10.4.10.150
A,ps1-mp,10.4.10.120
A,ps1-fsp,10.4.10.123
A,ps1-dp,10.4.10.121
A,ps1-db,10.4.10.151
A,ps1-client,10.4.10.111
A,hi3-ps2,10.4.10.230
A,hi2-psv,10.4.10.211
A,hi2-pss,10.4.10.210
A,ForestDnsZones,10.4.10.100
A,DomainDnsZones,10.4.10.100
A,dc,10.4.10.100
A,cas-pss,10.4.10.50
A,cas-db,10.4.10.51
A,attacker,10.4.10.254
SRV,_mssms_mp_sec._tcp,ps1-sec.mayyhem.com
SRV,_mssms_mp_ps2._tcp,ps2-pss.mayyhem.com
SRV,_mssms_mp_ps1._tcp,ps1-mp.mayyhem.com
NS,_msdcs,dc.mayyhem.com.
SRV,_ldap._tcp.ForestDnsZones,dc.mayyhem.com
SRV,_ldap._tcp.DomainDnsZones,dc.mayyhem.com
SRV,_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones,dc.mayyhem.com
SRV,_ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones,dc.mayyhem.com
SRV,_ldap._tcp.Default-First-Site-Name._sites,dc.mayyhem.com
SRV,_ldap._tcp,dc.mayyhem.com
SRV,_kpasswd._udp,dc.mayyhem.com
SRV,_kpasswd._tcp,dc.mayyhem.com
SRV,_kerberos._udp,dc.mayyhem.com
SRV,_kerberos._tcp.Default-First-Site-Name._sites,dc.mayyhem.com
SRV,_kerberos._tcp,dc.mayyhem.com
SRV,_gc._tcp.Default-First-Site-Name._sites,dc.mayyhem.com
SRV,_gc._tcp,dc.mayyhem.com
A,@,10.4.10.100
NS,@,dc.mayyhem.com.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Mayyhem