[go: up one dir, main page]

CN105407186A - Method and device for acquiring subdomain names - Google Patents

Method and device for acquiring subdomain names Download PDF

Info

Publication number
CN105407186A
CN105407186A CN201510981405.2A CN201510981405A CN105407186A CN 105407186 A CN105407186 A CN 105407186A CN 201510981405 A CN201510981405 A CN 201510981405A CN 105407186 A CN105407186 A CN 105407186A
Authority
CN
China
Prior art keywords
domain name
domain
sub
names
subdomain
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510981405.2A
Other languages
Chinese (zh)
Inventor
闫培健
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Qihoo Technology Co Ltd
Beijing Qianxin Technology Co Ltd
Original Assignee
Beijing Qihoo Technology Co Ltd
Beijing Qianxin Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qihoo Technology Co Ltd, Beijing Qianxin Technology Co Ltd filed Critical Beijing Qihoo Technology Co Ltd
Priority to CN201510981405.2A priority Critical patent/CN105407186A/en
Publication of CN105407186A publication Critical patent/CN105407186A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种获取子域名的方法和装置,涉及互联网技术领域,能够解决获取的搜索引擎中记录的子域名可能不全面的问题。本发明的方法主要包括:在确定父域名后,检测父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;若DNS服务器含有DNS域传送漏洞,则基于DNS域传送漏洞获取父域名的所有子域名;若DNS服务器没有DNS域传送漏洞,则获取搜索引擎中记录的父域名的第一子域名集合,以及根据预设域名规则库获得父域名的第二子域名集合;对第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的所有子域名。本发明主要适用于利用子域名查询工具查询某父域名下所有子域名的场景中。

The invention discloses a method and device for acquiring a subdomain name, relates to the technical field of the Internet, and can solve the problem that the acquired subdomain name recorded in a search engine may not be comprehensive. The method of the present invention mainly includes: after determining the parent domain name, detecting whether the domain name system DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability; domain name; if the DNS server does not have a DNS domain transmission vulnerability, obtain the first subdomain name set of the parent domain name recorded in the search engine, and obtain the second subdomain name set of the parent domain name according to the preset domain name rule base; for the first subdomain name set and the subdomain names in the third subdomain name set formed by the second subdomain name set are deduplicated to obtain all subdomain names of the parent domain name. The present invention is mainly applicable to the scene of querying all sub-domain names under a certain parent domain name by using a sub-domain name query tool.

Description

获取子域名的方法和装置Method and device for obtaining a subdomain name

技术领域technical field

本发明涉及互联网技术领域,尤其涉及一种获取子域名的方法和装置。The present invention relates to the technical field of the Internet, in particular to a method and device for acquiring a subdomain name.

背景技术Background technique

随着互联网技术的迅速发展,越来越多的企业或个人搭建了自己的网站,以便通过网站实现宣传产品、网络购物等操作。随着网站的增多,进行网站域名管理或者网站安全维护的应用也随之增多。With the rapid development of Internet technology, more and more enterprises or individuals have built their own websites in order to realize operations such as promoting products and online shopping through the websites. With the increase of websites, applications for website domain name management or website security maintenance also increase.

在实际应用中,在进行网站域名管理或者网站安全维护时,先需要获取网站的所有域名(即根域名以及根域名下所有子域名),才可进行后续操作。其中,若要管理或者维护一个网站,其根域名是很容易得到的,但是根域名下成千上万个子域名却很难获得。由于只要用户通过搜索引擎访问过某一网页,则搜索引擎就会将该网页对应的URL中的域名收录到数据库中,所以现有技术中常用的获取子域名的方式为:通过爬虫或者其他方式获取搜索引擎中记录的子域名。然而,只有通过搜索引擎搜索过的子域名才可被搜索引擎记收录,因此,搜索引擎中记录的子域名不一定全面。由此可知,如何更全面地获得某根域名下的子域名是当今一大难题。In practical applications, when performing website domain name management or website security maintenance, it is necessary to obtain all domain names of the website (that is, the root domain name and all subdomain names under the root domain name) before subsequent operations can be performed. Among them, if you want to manage or maintain a website, its root domain name is very easy to obtain, but it is difficult to obtain thousands of sub-domain names under the root domain name. As long as the user has visited a certain webpage through a search engine, the search engine will include the domain name in the URL corresponding to the webpage into the database, so the commonly used method of obtaining subdomain names in the prior art is: through crawlers or other methods Get the subdomain name recorded in the search engine. However, only the subdomain names searched by the search engine can be recorded and included by the search engine, therefore, the subdomain names recorded in the search engine may not be comprehensive. It can be seen from this that how to more comprehensively obtain subdomain names under a certain root domain name is a major problem today.

发明内容Contents of the invention

有鉴于此,本发明提供了一种获取子域名的方法和装置,能够解决现有技术中获取的搜索引擎中记录的子域名可能不全面,从而无法对未知子域名进行管理和维护的问题。In view of this, the present invention provides a method and device for obtaining a subdomain name, which can solve the problem that the subdomain name recorded in the search engine obtained in the prior art may not be comprehensive, so that the unknown subdomain name cannot be managed and maintained.

一方面,本发明提供了一种获取子域名的方法,所述方法包括:In one aspect, the present invention provides a method for obtaining a subdomain name, the method comprising:

在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;After determining the parent domain name, detecting whether the Domain Name System DNS server corresponding to the parent domain name contains a DNS domain transmission vulnerability;

若所述DNS服务器含有DNS域传送漏洞,则基于所述DNS域传送漏洞获取所述父域名的所有子域名;If the DNS server contains a DNS domain transmission vulnerability, then obtain all subdomain names of the parent domain name based on the DNS domain transmission vulnerability;

若所述DNS服务器没有DNS域传送漏洞,则获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;If the DNS server has no DNS domain transfer vulnerability, then obtain the first set of sub-domain names of the parent domain name recorded in the search engine, and obtain the second set of sub-domain names of the parent domain name according to the preset domain name rule base, the The preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name;

对所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。Deduplicating the subdomain names in the third subdomain name set formed by the first subdomain name set and the second subdomain name set to obtain all subdomain names of the parent domain name.

另一方面,本发明提供了一种获取子域名的装置,所述装置包括:In another aspect, the present invention provides a device for obtaining a subdomain name, the device comprising:

检测单元,用于在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;The detection unit is used to detect whether the domain name system DNS server corresponding to the parent domain name contains a DNS domain transmission vulnerability after the parent domain name is determined;

获取单元,用于当所述检测单元的检测结果为所述DNS服务器含有DNS域传送漏洞时,基于所述DNS域传送漏洞获取所述父域名的所有子域名;An obtaining unit, configured to obtain all subdomain names of the parent domain name based on the DNS domain transfer vulnerability when the detection result of the detection unit is that the DNS server contains a DNS domain transfer vulnerability;

所述获取单元,还用于当所述DNS服务器没有DNS域传送漏洞时,获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;The obtaining unit is further configured to obtain the first sub-domain name set of the parent domain name recorded in the search engine when the DNS server has no DNS domain transfer vulnerability, and obtain the first sub-domain name set of the parent domain name according to a preset domain name rule base The second set of sub-domain names, the preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name;

去重单元,用于对所述获取单元获得的所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。A de-duplication unit, configured to de-duplicate the sub-domain names in the third sub-domain name set formed by the first sub-domain name set and the second sub-domain name set obtained by the acquisition unit, and obtain the parent domain name All subdomains.

借由上述技术方案,本发明提供的获取子域名的方法和装置,能够在确定父域名后,先检测父域名对应的DNS服务器是否含有DNS域传送漏洞,若该DNS服务器含有DNS域传送漏洞,则能够直接基于DNS域传送漏洞从DNS服务器侧获取父域名的所有子域名,从而使得获的子域名最全面;若该DNS服务器没有DNS域传送漏洞,则分别获取搜索引擎中记录的父域名的第一子域名集合以及根据预设域名规则库获得父域名的第二子域名集合,并对第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的子域名,由于通过两种方式获得的子域名具有互补的效果,所以比仅通过搜索引擎获得的子域名更加全面。By virtue of the above technical solution, the method and device for obtaining a sub-domain name provided by the present invention can first detect whether the DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability after determining the parent domain name. If the DNS server contains a DNS domain transfer vulnerability, Then all the subdomain names of the parent domain name can be directly obtained from the DNS server side based on the DNS domain transfer vulnerability, so that the obtained subdomain names are the most comprehensive; The first sub-domain name set and the second sub-domain name set of the parent domain name are obtained according to the preset domain name rule base, and the sub-domain names in the third sub-domain name set composed of the first sub-domain name set and the second sub-domain name set are deduplicated. , to obtain the subdomain name of the parent domain name, because the subdomain name obtained through the two methods has complementary effects, it is more comprehensive than the subdomain name obtained only through the search engine.

上述说明仅是本发明技术方案的概述,为了能够更清楚了解本发明的技术手段,而可依照说明书的内容予以实施,并且为了让本发明的上述和其它目的、特征和优点能够更明显易懂,以下特举本发明的具体实施方式。The above description is only an overview of the technical solution of the present invention. In order to better understand the technical means of the present invention, it can be implemented according to the contents of the description, and in order to make the above and other purposes, features and advantages of the present invention more obvious and understandable , the specific embodiments of the present invention are enumerated below.

附图说明Description of drawings

通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。附图仅用于示出优选实施方式的目的,而并不认为是对本发明的限制。而且在整个附图中,用相同的参考符号表示相同的部件。在附图中:Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiment. The drawings are only for the purpose of illustrating a preferred embodiment and are not to be considered as limiting the invention. Also throughout the drawings, the same reference numerals are used to designate the same components. In the attached picture:

图1示出了本发明实施例提供的一种获取子域名的方法的流程图;FIG. 1 shows a flow chart of a method for obtaining a subdomain name provided by an embodiment of the present invention;

图2示出了本发明实施例提供的一种获取子域名的装置的组成框图;FIG. 2 shows a block diagram of an apparatus for obtaining a subdomain name provided by an embodiment of the present invention;

图3示出了本发明实施例提供的另一种获取子域名的装置的组成框图。FIG. 3 shows a block diagram of another apparatus for acquiring a subdomain name provided by an embodiment of the present invention.

具体实施方式detailed description

下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

本发明实施例提供了一种获取子域名的方法,如图1所示,该方法主要包括:The embodiment of the present invention provides a method for obtaining a subdomain name, as shown in Figure 1, the method mainly includes:

101、在确定父域名后,检测父域名对应的DNS服务器是否含有DNS域传送漏洞。101. After determining the parent domain name, detect whether the DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability.

当用户在查找子域名的界面输入父域名后,终端接收到查找指令,并根据查找指令确定待查找子域名的父域名,然后检测当前网络中的DNS服务器是否含有DNS域传送漏洞,以便确定是否可以直接从DNS服务器侧获取该父域名下的所有子域名。After the user enters the parent domain name on the subdomain search interface, the terminal receives the search instruction, determines the parent domain name of the subdomain name to be searched according to the search instruction, and then detects whether the DNS server in the current network contains a DNS domain transfer vulnerability, so as to determine whether All subdomain names under the parent domain name can be obtained directly from the DNS server side.

需要说明的是,本步骤中的父域名可以为根域名(即一级域名),也可以为二级域名或者其他等级的域名。例如,若父域名为一级域名,则待查找的子域名为二级域名以及二级域名以下的域名;若父域名为二级域名,则待查收的子域名为三级域名以及三级域名以下的域名。It should be noted that the parent domain name in this step may be the root domain name (ie, the first-level domain name), or the second-level domain name or other levels of domain names. For example, if the parent domain name is a first-level domain name, the sub-domain names to be searched are second-level domain names and domain names below the second-level domain name; if the parent domain name is a second-level domain name, the sub-domain names to be checked are third-level domain names and third-level domain names The following domain names.

102、若DNS服务器含有DNS域传送漏洞,则基于DNS域传送漏洞获取父域名的所有子域名。102. If the DNS server contains a DNS domain transmission vulnerability, then obtain all subdomain names of the parent domain name based on the DNS domain transmission vulnerability.

在实际应用中,为了避免DNS服务器发生故障,而造成用户无法访问网络的情况,网络运营商一般会设置两个DNS服务器,一个为主DNS服务器,一个为备用DNS服务器。其中,主DNS服务器用于对各个终端访问的URL进行域名解析,并且通过DNS域传送的方式向备用DNS传送更新的域名列表,以实现主备同步,当在主DNS发生故障时,切换至备用DNS服务器,能够继续对各个终端访问的URL进行域名解析。一般情况下,DNS域传送操作只应用于主DNS服务器与备用DNS服务器之间,但是许多主DNS服务器却常常被错误地配置成只要有设备发出请求,主DNS服务器就会向对方反馈一个域名列表。因此,当检测出DNS服务器含有DNS域传送漏洞时,可以基于DNS域传送漏洞获取父域名的所有子域名。In practical applications, in order to prevent users from being unable to access the network due to DNS server failure, network operators generally set up two DNS servers, one as the primary DNS server and the other as the standby DNS server. Among them, the primary DNS server is used to perform domain name resolution on the URL accessed by each terminal, and transmits the updated domain name list to the standby DNS through DNS domain transmission, so as to realize the synchronization of the primary and secondary DNS. When the primary DNS fails, it will switch to the secondary DNS. The DNS server can continue to perform domain name resolution on URLs accessed by each terminal. Under normal circumstances, the DNS domain transfer operation is only applied between the primary DNS server and the backup DNS server, but many primary DNS servers are often wrongly configured so that as long as a device sends a request, the primary DNS server will feed back a list of domain names to the other party. . Therefore, when it is detected that the DNS server contains a DNS domain transfer vulnerability, all subdomain names of the parent domain name can be obtained based on the DNS domain transfer vulnerability.

103、若DNS服务器没有DNS域传送漏洞,则获取搜索引擎中记录的父域名的第一子域名集合,以及根据预设域名规则库获得父域名的第二子域名集合。103. If the DNS server has no DNS domain transfer vulnerability, obtain the first sub-domain name set of the parent domain name recorded in the search engine, and obtain the second sub-domain name set of the parent domain name according to the preset domain name rule base.

当DNS服务器没有DNS域传送漏洞时,可以通过其他方式获取父域名的所有子域名。When the DNS server does not have a DNS domain transfer vulnerability, all subdomain names of the parent domain name can be obtained in other ways.

方式一:获取搜索引擎中记录的父域名的子域名。Method 1: Obtain the subdomain name of the parent domain name recorded in the search engine.

在实际应用中,当用户通过搜索引擎访问某一网页后,会将该网页的URL中携带的域名记录至本地,因此可以获取搜索引擎中记录的域名。需要说明的是,本步骤中的搜索引擎可以为一个,也可以为多个,在此不做限定。In practical applications, when a user accesses a certain webpage through a search engine, the domain name carried in the URL of the webpage will be recorded locally, so the domain name recorded in the search engine can be obtained. It should be noted that there may be one or more search engines in this step, which is not limited here.

方式二:根据预设域名规则库获得父域名的子域名。Method 2: Obtain the subdomain name of the parent domain name according to the preset domain name rule base.

其中,预设域名规则库用于记录构建父域名下各个子域名的规则。本方式为通过构建父域名下的不同的子域名,并对构建的子域名进行验证,获取父域名的真正的子域名。Wherein, the default domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name. This method is to obtain the real sub-domain name of the parent domain name by constructing different sub-domain names under the parent domain name and verifying the constructed sub-domain names.

104、对第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的所有子域名。104. Perform deduplication processing on the subdomain names in the third subdomain name set formed by the first subdomain name set and the second subdomain name set, to obtain all subdomain names of the parent domain name.

当通过搜索引擎获得第一子域名集合以及通过预设域名规则库获得第二子域名集合后,可以将第一子域名集合以及第二子域名集合合并为一个新的子域名集合(即第三子域名集合),并将第三子域名集合中的子域名进行去重处理,从而可以获得父域名下的所有子域名。After obtaining the first sub-domain name set through the search engine and the second sub-domain name set through the preset domain name rule base, the first sub-domain name set and the second sub-domain name set can be merged into a new sub-domain name set (ie, the third sub-domain name collection), and de-duplicate the sub-domain names in the third sub-domain name collection, so as to obtain all sub-domain names under the parent domain name.

本发明实施例提供的获取子域名的方法,能够在确定父域名后,先检测父域名对应的DNS服务器是否含有DNS域传送漏洞,若该DNS服务器含有DNS域传送漏洞,则能够直接基于DNS域传送漏洞从DNS服务器侧获取父域名的所有子域名,从而使得获的子域名最全面;若该DNS服务器没有DNS域传送漏洞,则分别获取搜索引擎中记录的父域名的第一子域名集合以及根据预设域名规则库获得父域名的第二子域名集合,并对第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的子域名,由于通过两种方式获得的子域名具有互补的效果,所以比仅通过搜索引擎获得的子域名更加全面。The method for obtaining a sub-domain name provided by the embodiment of the present invention can first detect whether the DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability after determining the parent domain name. The transmission vulnerability obtains all subdomain names of the parent domain name from the DNS server side, so as to obtain the most comprehensive subdomain names; if the DNS server does not have DNS domain transmission vulnerabilities, obtain the first subdomain name set of the parent domain name recorded in the search engine and Obtain the second sub-domain name set of the parent domain name according to the preset domain name rule base, and deduplicate the sub-domain names in the third sub-domain name set composed of the first sub-domain name set and the second sub-domain name set, and obtain the sub-domain name of the parent domain name. Domain names, because the subdomains obtained through the two methods have complementary effects, are more comprehensive than subdomains obtained only through search engines.

进一步的,上述步骤101中基于DNS域传送漏洞获取父域名的所有子域名的具体实现方式可以为:向DNS服务器发送域名列表请求;接收DNS服务器根据域名列表请求发送的域名列表,从域名列表中获取父域名的所有子域名。Further, the specific implementation method of obtaining all subdomain names of the parent domain name based on the DNS domain transmission vulnerability in the above step 101 may be: sending a domain name list request to the DNS server; receiving the domain name list sent by the DNS server according to the domain name list request, and selecting Get all subdomains of the parent domain.

其中,域名列表中记录有网络中所有的域名与网站IP地址的对应关系。当确定DNS服务器(即主DNS服务器)存在DNS域传送漏洞时,终端可以向DNS服务器发送域名列表请求;由于DNS服务器存在DNS域传送漏洞,所以DNS服务器侧没有设置DNS域传送权限,由此当其接收到域名列表请求后,会根据域名列表请求向终端反馈携带域名列表的数据响应;终端接收到携带域名列表的数据响应后,可以从数据响应中获取域名列表,并从中查找出需要查找的父域名下的所有子域名。Wherein, the domain name list records correspondences between all domain names in the network and IP addresses of websites. When it is determined that the DNS server (i.e., the primary DNS server) has a DNS domain transfer vulnerability, the terminal can send a domain name list request to the DNS server; because the DNS server has a DNS domain transfer vulnerability, the DNS server side does not set the DNS domain transfer permission, so when After receiving the domain name list request, it will feed back the data response carrying the domain name list to the terminal according to the domain name list request; after the terminal receives the data response carrying the domain name list, it can obtain the domain name list from the data response, and find out what needs to be found. All subdomains under the parent domain name.

进一步的,由于用户使用各个搜索引擎访问的网页有所差异,例如存在用户通过搜索引擎1访问过网页m,而却没有用户通过搜索引擎2访问过网页n,所以各个搜索引擎中记录的父域名的子域名的种类有所差异。因此,为了使得获得的父域名的子域名更全面,可以分别获取各个搜索引擎中记录的父域名的子域名,并将获得的所有搜索引擎中记录的父域名的子域名构成的集合确定为第一子域名集合。Furthermore, since the webpages visited by users using various search engines are different, for example, some users have visited webpage m through search engine 1, but no user has visited webpage n through search engine 2, so the parent domain name recorded in each search engine The types of subdomains vary. Therefore, in order to make the obtained sub-domain names of the parent domain name more comprehensive, the sub-domain names of the parent domain name recorded in each search engine can be respectively obtained, and the set of the obtained sub-domain names of the parent domain name recorded in all search engines can be determined as the first A collection of subdomain names.

具体的,获取搜索引擎中记录的父域名的子域名的具体实现方式为:基于搜索引擎,通过查询命令获取搜索引擎中记录的父域名的子域名。Specifically, the specific implementation manner of obtaining the subdomain name of the parent domain name recorded in the search engine is: based on the search engine, the subdomain name of the parent domain name recorded in the search engine is obtained through a query command.

其中,查询命令包括site命令。例如基于某搜索引擎查找“xyz.com”的子域名,则可以在该搜索引擎中搜索“site:xyz.com”,从而可获得该搜索引擎中记录的“xyz.com”所有子域名。Wherein, the query command includes a site command. For example, if you search for the subdomain name of "xyz.com" based on a search engine, you can search for "site:xyz.com" in the search engine, so as to obtain all the subdomain names of "xyz.com" recorded in the search engine.

进一步的,上述实施例中提及的根据预设域名规则库获得父域名的第二子域名集合的具体实现方式可以为:基于预设域名规则库中的子域名构建规则,构建父域名对应的虚拟子域名;若虚拟子域名对应的URL存在,则将虚拟子域名确定为父域名的子域名;若虚拟子域名对应的URL不存在,则确定该虚拟子域名不是父域名的子域名;将确定的父域名的子域名构成的集合确定为第二子域名集合。Further, the specific implementation method of obtaining the second sub-domain name set of the parent domain name according to the preset domain name rule base mentioned in the above embodiment may be: based on the sub-domain name construction rules in the preset domain name rule base, construct the corresponding sub-domain name of the parent domain name Virtual sub-domain name; if the URL corresponding to the virtual sub-domain name exists, then determine the virtual sub-domain name as a sub-domain name of the parent domain name; if the URL corresponding to the virtual sub-domain name does not exist, then determine that the virtual sub-domain name is not a sub-domain name of the parent domain name; The determined set of sub-domain names of the parent domain name is determined as the second set of sub-domain names.

其中,确定虚拟子域名对应的URL是否存在的具体实现方式可以为基于搜索引擎,搜索携带虚拟子域名的URL,若成功返回该URL对应的页面,则确定该虚拟子域名为父域名的子域名,若未成功返回该URL对应的页面,则确定该虚拟子域名不是父域名的子域名。Wherein, the specific implementation method of determining whether the URL corresponding to the virtual subdomain name exists can be based on a search engine, searching for the URL carrying the virtual subdomain name, and if the page corresponding to the URL is successfully returned, then it is determined that the virtual subdomain name is a subdomain name of the parent domain name , if the page corresponding to the URL is not successfully returned, it is determined that the virtual subdomain name is not a subdomain name of the parent domain name.

示例性的,若父域名为“abc.com”,则根据预设域名规则库中的某一条子域名构建规则构建的该父域名的子域名可以为“m.abc.com”,此时基于某搜索引擎访问“http//:m.abc.com”。若成功返回“http//:m.abc.com”对应的页面,则确定“m.abc.com”为“abc.com”的子域名,若未成功返回“http//:m.abc.com”对应的页面(例如提示网址错误),则确定“m.abc.com”不是“abc.com”的子域名。Exemplarily, if the parent domain name is "abc.com", the subdomain name of the parent domain name constructed according to a certain subdomain construction rule in the preset domain name rule base can be "m.abc.com". A search engine accesses "http//:m.abc.com". If the page corresponding to "http//:m.abc.com" is successfully returned, then "m.abc.com" is determined to be the subdomain name of "abc.com", if not, "http//:m.abc. com" (for example, prompting that the URL is wrong), it is determined that "m.abc.com" is not a subdomain name of "abc.com".

进一步的,在确定DNS服务器含有DNS域传送漏洞,并基于DNS域传送漏洞获取父域名的所有子域名之后,终端可以向DNS服务器发送漏洞通知,以便管理员及时对DNS服务器侧产生的漏洞进行修复。其中,漏洞通知包括漏洞类型,例如,漏洞类型为DNS域传送漏洞。Further, after determining that the DNS server contains a DNS domain transfer vulnerability, and obtaining all subdomain names of the parent domain name based on the DNS domain transfer vulnerability, the terminal can send a vulnerability notification to the DNS server, so that the administrator can repair the vulnerabilities generated on the DNS server side in a timely manner . Wherein, the vulnerability notification includes a vulnerability type, for example, the vulnerability type is a DNS domain transfer vulnerability.

进一步的,依据上述方法实施例,本发明的另一个实施例还提供了一种获取子域名的装置,如图2所示,该装置主要包括:检测单元21、获取单元22和去重单元23。其中,Further, according to the above method embodiment, another embodiment of the present invention also provides a device for acquiring a subdomain name, as shown in FIG. 2 , the device mainly includes: a detection unit 21, an acquisition unit 22 and a deduplication unit 23 . in,

检测单元21,用于在确定父域名后,检测父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;The detection unit 21 is configured to detect whether the domain name system DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability after the parent domain name is determined;

获取单元22,用于当检测单元21的检测结果为DNS服务器含有DNS域传送漏洞时,基于DNS域传送漏洞获取父域名的所有子域名;The obtaining unit 22 is used to obtain all subdomain names of the parent domain name based on the DNS domain transfer vulnerability when the detection result of the detection unit 21 is that the DNS server contains a DNS domain transfer vulnerability;

获取单元22,还用于当DNS服务器没有DNS域传送漏洞时,获取搜索引擎中记录的父域名的第一子域名集合,以及根据预设域名规则库获得父域名的第二子域名集合,预设域名规则库用于记录构建父域名下各个子域名的规则;The obtaining unit 22 is also used to obtain the first sub-domain name set of the parent domain name recorded in the search engine when the DNS server has no DNS domain transfer vulnerability, and obtain the second sub-domain name set of the parent domain name according to the preset domain name rule base, pre-set A domain name rule library is set up to record the rules for constructing each sub-domain name under the parent domain name;

去重单元23,用于对获取单元22获得的第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的所有子域名。The de-duplication unit 23 is configured to de-duplicate the sub-domain names in the third sub-domain name set formed by the first sub-domain name set and the second sub-domain name set obtained by the acquiring unit 22, and obtain all sub-domain names of the parent domain name.

本发明实施例提供的获取子域名的装置,能够在确定父域名后,先检测父域名对应的DNS服务器是否含有DNS域传送漏洞,若该DNS服务器含有DNS域传送漏洞,则能够直接基于DNS域传送漏洞从DNS服务器侧获取父域名的所有子域名,从而使得获的子域名最全面;若该DNS服务器没有DNS域传送漏洞,则分别获取搜索引擎中记录的父域名的第一子域名集合以及根据预设域名规则库获得父域名的第二子域名集合,并对第一子域名集合以及第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得父域名的子域名,由于通过两种方式获得的子域名具有互补的效果,所以比仅通过搜索引擎获得的子域名更加全面。The device for obtaining a sub-domain name provided by the embodiment of the present invention can first detect whether the DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability after determining the parent domain name. The transmission vulnerability obtains all subdomain names of the parent domain name from the DNS server side, so as to obtain the most comprehensive subdomain names; if the DNS server does not have DNS domain transmission vulnerabilities, obtain the first subdomain name set of the parent domain name recorded in the search engine and Obtain the second sub-domain name set of the parent domain name according to the preset domain name rule base, and deduplicate the sub-domain names in the third sub-domain name set composed of the first sub-domain name set and the second sub-domain name set, and obtain the sub-domain name of the parent domain name. Domain names, because the subdomains obtained through the two methods have complementary effects, are more comprehensive than subdomains obtained only through search engines.

进一步的,如图3所示,获取单元22,包括:Further, as shown in Figure 3, the acquisition unit 22 includes:

发送模块221,用于向DNS服务器发送域名列表请求;A sending module 221, configured to send a domain name list request to a DNS server;

接收模块222,用于接收DNS服务器根据域名列表请求发送的域名列表,域名列表中记录有网络中所有的域名与网站IP地址的对应关系;The receiving module 222 is used to receive the domain name list sent by the DNS server according to the domain name list request, and the corresponding relationship between all domain names in the network and the website IP addresses is recorded in the domain name list;

第一获取模块223,用于从接收模块222接收的域名列表中获取父域名的所有子域名。The first obtaining module 223 is configured to obtain all sub-domain names of the parent domain name from the list of domain names received by the receiving module 222 .

进一步的,如图3所示,获取单元22,包括:Further, as shown in Figure 3, the acquisition unit 22 includes:

第二获取模块224,用于分别获取各个搜索引擎中记录的父域名的子域名;The second obtaining module 224 is used to respectively obtain the sub-domain names of the parent domain names recorded in each search engine;

第一确定模块225,用于将获得的所有搜索引擎中记录的父域名的子域名构成的集合确定为第一子域名集合。The first determining module 225 is configured to determine the obtained set of subdomain names of the parent domain name recorded in all search engines as the first set of subdomain names.

进一步的,如图3所示,第二获取模块224,用于基于搜索引擎,通过查询命令获取搜索引擎中记录的父域名的子域名。。Further, as shown in FIG. 3 , the second acquiring module 224 is configured to acquire the subdomain name of the parent domain name recorded in the search engine through a query command based on the search engine. .

进一步的,如图3所示,查询命令包括site命令。Further, as shown in FIG. 3, the query command includes a site command.

进一步的,如图3所示,获取单元22,包括:Further, as shown in Figure 3, the acquisition unit 22 includes:

构建模块226,用于基于预设域名规则库中的子域名构建规则,构建父域名对应的虚拟子域名;A construction module 226, configured to construct a virtual sub-domain name corresponding to the parent domain name based on the sub-domain name construction rules in the preset domain name rule base;

第二确定模块227,用于当构建模块构建的虚拟子域名对应的统一资源定位符URL存在时,将虚拟子域名确定为父域名的子域名;The second determining module 227 is configured to determine the virtual subdomain name as a subdomain name of the parent domain name when the uniform resource locator URL corresponding to the virtual subdomain name constructed by the building module exists;

第二确定模块227,还用于将确定的父域名的子域名构成的集合确定为第二子域名集合。The second determining module 227 is further configured to determine the determined set of sub-domain names of the parent domain name as the second set of sub-domain names.

进一步的,如图3所示,该装置还包括:Further, as shown in Figure 3, the device also includes:

发送单元24,用于在基于DNS域传送漏洞获取父域名的所有子域名之后,向DNS服务器发送漏洞通知,漏洞通知包括漏洞类型。The sending unit 24 is configured to send a vulnerability notification to the DNS server after obtaining all the subdomain names of the parent domain name based on the DNS domain transfer vulnerability, where the vulnerability notification includes the type of the vulnerability.

本发明的实施例公开了:Embodiments of the invention disclose:

A1、一种获取子域名的方法,其特征在于,所述方法包括:A1. A method for obtaining a subdomain name, characterized in that the method includes:

在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;After determining the parent domain name, detecting whether the Domain Name System DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability;

若所述DNS服务器含有DNS域传送漏洞,则基于所述DNS域传送漏洞获取所述父域名的所有子域名;If the DNS server contains a DNS domain transmission vulnerability, then obtain all subdomain names of the parent domain name based on the DNS domain transmission vulnerability;

若所述DNS服务器没有DNS域传送漏洞,则获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;If the DNS server has no DNS domain transfer vulnerability, then obtain the first set of sub-domain names of the parent domain name recorded in the search engine, and obtain the second set of sub-domain names of the parent domain name according to the preset domain name rule base, the The preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name;

对所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。Deduplicating the subdomain names in the third subdomain name set formed by the first subdomain name set and the second subdomain name set to obtain all subdomain names of the parent domain name.

A2、根据A1所述的方法,其特征在于,所述基于所述DNS域传送漏洞获取所述父域名的所有子域名,包括:A2. The method according to A1, wherein the obtaining of all subdomain names of the parent domain name based on the DNS domain transfer vulnerability includes:

向所述DNS服务器发送域名列表请求;Send a domain name list request to the DNS server;

接收所述DNS服务器根据所述域名列表请求发送的域名列表,所述域名列表中记录有网络中所有的域名与网站IP地址的对应关系;Receiving the domain name list sent by the DNS server according to the domain name list request, the domain name list records the correspondence between all domain names in the network and the IP addresses of websites;

从所述域名列表中获取所述父域名的所有子域名。Obtain all subdomain names of the parent domain name from the domain name list.

A3、根据A1所述的方法,其特征在于,所述获取搜索引擎中记录的所述父域名的第一子域名集合,包括:A3, according to the method described in A1, it is characterized in that, the first sub-domain name set of the parent domain name recorded in the acquisition search engine includes:

分别获取各个搜索引擎中记录的所述父域名的子域名;Respectively obtain the sub-domain names of the parent domain names recorded in each search engine;

将获得的所有搜索引擎中记录的所述父域名的子域名构成的集合确定为所述第一子域名集合。The obtained set of subdomain names of the parent domain name recorded in all search engines is determined as the first set of subdomain names.

A4、根据A3所述的方法,其特征在于,所述分别获取各个搜索引擎中记录的所述父域名的子域名,包括:A4, according to the method described in A3, it is characterized in that, the sub-domain names of the described parent domain names recorded in each search engine are obtained respectively, including:

基于搜索引擎,通过查询命令获取所述搜索引擎中记录的所述父域名的子域名。Based on the search engine, the subdomain name of the parent domain name recorded in the search engine is acquired through a query command.

A5、根据A4所述的方法,其特征在于,所述查询命令包括site命令。A5. The method according to A4, wherein the query command includes a site command.

A6、根据A1所述的方法,其特征在于,所述根据预设域名规则库获得所述父域名的第二子域名集合,包括:A6. The method according to A1, wherein the obtaining the second sub-domain name set of the parent domain name according to the preset domain name rule base includes:

基于所述预设域名规则库中的子域名构建规则,构建所述父域名对应的虚拟子域名;Constructing a virtual subdomain name corresponding to the parent domain name based on the subdomain construction rules in the preset domain name rule library;

若所述虚拟子域名对应的统一资源定位符URL存在,则将所述虚拟子域名确定为所述父域名的子域名;If the uniform resource locator URL corresponding to the virtual sub-domain name exists, then determine the virtual sub-domain name as a sub-domain name of the parent domain name;

将确定的所述父域名的子域名构成的集合确定为所述第二子域名集合。determining the determined set of sub-domain names of the parent domain name as the second set of sub-domain names.

A7、根据A1至A6中任一项所述的方法,其特征在于,在所述基于所述DNS域传送漏洞获取所述父域名的所有子域名之后,所述方法还包括:A7. The method according to any one of A1 to A6, characterized in that, after acquiring all subdomain names of the parent domain name based on the DNS domain transmission vulnerability, the method further includes:

向所述DNS服务器发送漏洞通知,所述漏洞通知包括漏洞类型。sending a vulnerability notification to the DNS server, where the vulnerability notification includes a type of vulnerability.

B8、一种获取子域名的装置,其特征在于,所述装置包括:B8. A device for obtaining a subdomain name, characterized in that the device includes:

检测单元,用于在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;The detection unit is used to detect whether the domain name system DNS server corresponding to the parent domain name contains a DNS domain transmission vulnerability after the parent domain name is determined;

获取单元,用于当所述检测单元的检测结果为所述DNS服务器含有DNS域传送漏洞时,基于所述DNS域传送漏洞获取所述父域名的所有子域名;An obtaining unit, configured to obtain all subdomain names of the parent domain name based on the DNS domain transfer vulnerability when the detection result of the detection unit is that the DNS server contains a DNS domain transfer vulnerability;

所述获取单元,还用于当所述DNS服务器没有DNS域传送漏洞时,获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;The obtaining unit is further configured to obtain the first sub-domain name set of the parent domain name recorded in the search engine when the DNS server has no DNS domain transfer vulnerability, and obtain the first sub-domain name set of the parent domain name according to a preset domain name rule base The second set of sub-domain names, the preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name;

去重单元,用于对所述获取单元获得的所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。A de-duplication unit, configured to de-duplicate the sub-domain names in the third sub-domain name set formed by the first sub-domain name set and the second sub-domain name set obtained by the acquisition unit, and obtain the parent domain name All subdomains.

B9、根据B8所述的装置,其特征在于,所述获取单元,包括:B9. The device according to B8, wherein the acquisition unit includes:

发送模块,用于向所述DNS服务器发送域名列表请求;A sending module, configured to send a domain name list request to the DNS server;

接收模块,用于接收所述DNS服务器根据所述域名列表请求发送的域名列表,所述域名列表中记录有网络中所有的域名与网站IP地址的对应关系;The receiving module is used to receive the domain name list sent by the DNS server according to the domain name list request, and the corresponding relationship between all domain names and website IP addresses in the network is recorded in the domain name list;

第一获取模块,用于从所述接收模块接收的所述域名列表中获取所述父域名的所有子域名。A first acquiring module, configured to acquire all subdomain names of the parent domain name from the domain name list received by the receiving module.

B10、根据B8所述的装置,其特征在于,所述获取单元,包括:B10. The device according to B8, wherein the acquisition unit includes:

第二获取模块,用于分别获取各个搜索引擎中记录的所述父域名的子域名;The second obtaining module is used to respectively obtain the sub-domain names of the parent domain names recorded in each search engine;

第一确定模块,用于将获得的所有搜索引擎中记录的所述父域名的子域名构成的集合确定为所述第一子域名集合。The first determining module is configured to determine the obtained set of sub-domain names of the parent domain name recorded in all search engines as the first set of sub-domain names.

B11、根据B10所述的装置,其特征在于,所述第二获取模块,用于基于搜索引擎,通过查询命令获取所述搜索引擎中记录的所述父域名的子域名。B11. The device according to B10, wherein the second acquiring module is configured to acquire the subdomain name of the parent domain name recorded in the search engine through a query command based on the search engine.

B12、根据B11所述的装置,其特征在于,所述查询命令包括site命令。B12, according to the described device of B11, it is characterized in that, described inquiry order comprises site order.

B13、根据B8所述的装置,其特征在于,所述获取单元,包括:B13. The device according to B8, wherein the acquisition unit includes:

构建模块,用于基于所述预设域名规则库中的子域名构建规则,构建所述父域名对应的虚拟子域名;A construction module, configured to construct a virtual sub-domain name corresponding to the parent domain name based on the sub-domain name construction rules in the preset domain name rule base;

第二确定模块,用于当所述构建模块构建的所述虚拟子域名对应的统一资源定位符URL存在时,将所述虚拟子域名确定为所述父域名的子域名;A second determining module, configured to determine the virtual subdomain name as a subdomain name of the parent domain name when the Uniform Resource Locator URL corresponding to the virtual subdomain name constructed by the construction module exists;

所述第二确定模块,还用于将确定的所述父域名的子域名构成的集合确定为所述第二子域名集合。The second determining module is further configured to determine the determined set of sub-domain names of the parent domain name as the second set of sub-domain names.

B14、根据B8至B13中任一项所述的装置,其特征在于,所述装置还包括:B14. The device according to any one of B8 to B13, wherein the device also includes:

发送单元,用于在所述基于所述DNS域传送漏洞获取所述父域名的所有子域名之后,向所述DNS服务器发送漏洞通知,所述漏洞通知包括漏洞类型。A sending unit, configured to send a vulnerability notification to the DNS server after acquiring all subdomain names of the parent domain name based on the DNS domain transmission vulnerability, the vulnerability notification including a type of vulnerability.

在上述实施例中,对各个实施例的描述都各有侧重,某个实施例中没有详述的部分,可以参见其他实施例的相关描述。In the foregoing embodiments, the descriptions of each embodiment have their own emphases, and for parts not described in detail in a certain embodiment, reference may be made to relevant descriptions of other embodiments.

可以理解的是,上述方法及装置中的相关特征可以相互参考。另外,上述实施例中的“第一”、“第二”等是用于区分各实施例,而并不代表各实施例的优劣。It can be understood that related features in the above methods and devices can refer to each other. In addition, "first", "second" and so on in the above embodiments are used to distinguish each embodiment, and do not represent the advantages and disadvantages of each embodiment.

所属领域的技术人员可以清楚地了解到,为描述的方便和简洁,上述描述的系统,装置和单元的具体工作过程,可以参考前述方法实施例中的对应过程,在此不再赘述。Those skilled in the art can clearly understand that for the convenience and brevity of the description, the specific working process of the above-described system, device and unit can refer to the corresponding process in the foregoing method embodiment, which will not be repeated here.

在此提供的算法和显示不与任何特定计算机、虚拟系统或者其它设备固有相关。各种通用系统也可以与基于在此的示教一起使用。根据上面的描述,构造这类系统所要求的结构是显而易见的。此外,本发明也不针对任何特定编程语言。应当明白,可以利用各种编程语言实现在此描述的本发明的内容,并且上面对特定语言所做的描述是为了披露本发明的最佳实施方式。The algorithms and displays presented herein are not inherently related to any particular computer, virtual system, or other device. Various generic systems can also be used with the teachings based on this. The structure required to construct such a system is apparent from the above description. Furthermore, the present invention is not specific to any particular programming language. It should be understood that various programming languages can be used to implement the content of the present invention described herein, and the above description of specific languages is for disclosing the best mode of the present invention.

在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。In the description provided herein, numerous specific details are set forth. However, it is understood that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.

类似地,应当理解,为了精简本公开并帮助理解各个发明方面中的一个或多个,在上面对本发明的示例性实施例的描述中,本发明的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本发明要求比在每个权利要求中所明确记载的特征更多的特征。更确切地说,如下面的权利要求书所反映的那样,发明方面在于少于前面公开的单个实施例的所有特征。因此,遵循具体实施方式的权利要求书由此明确地并入该具体实施方式,其中每个权利要求本身都作为本发明的单独实施例。Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, in order to streamline this disclosure and to facilitate an understanding of one or more of the various inventive aspects, various features of the invention are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed invention requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following the Detailed Description are hereby expressly incorporated into this Detailed Description, with each claim standing on its own as a separate embodiment of this invention.

本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings) and any method or method so disclosed may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.

此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本发明的范围之内并且形成不同的实施例。例如,在下面的权利要求书中,所要求保护的实施例的任意之一都可以以任意的组合方式来使用。Furthermore, those skilled in the art will understand that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the invention. and form different embodiments. For example, in the following claims, any of the claimed embodiments may be used in any combination.

本发明的各个部件实施例可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。本领域的技术人员应当理解,可以在实践中使用微处理器或者数字信号处理器(DSP)来实现根据本发明实施例的随身电子防丢设备的状态检测方法、设备、服务器及系统设备中的一些或者全部部件的一些或者全部功能。本发明还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。这样的实现本发明的程序可以存储在计算机可读介质上,或者可以具有一个或者多个信号的形式。这样的信号可以从因特网网站上下载得到,或者在载体信号上提供,或者以任何其他形式提供。The various component embodiments of the present invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art should understand that a microprocessor or a digital signal processor (DSP) can be used in practice to implement the state detection method, device, server, and system device of a portable electronic anti-lost device according to an embodiment of the present invention. Some or all of the functions of some or all of the components. The present invention can also be implemented as an apparatus or an apparatus program (for example, a computer program and a computer program product) for performing a part or all of the methods described herein. Such a program for realizing the present invention may be stored on a computer-readable medium, or may be in the form of one or more signals. Such a signal may be downloaded from an Internet site, or provided on a carrier signal, or provided in any other form.

应该注意的是上述实施例对本发明进行说明而不是对本发明进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施例。在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。单词“包含”不排除存在未列在权利要求中的元件或步骤。位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。本发明可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。单词第一、第二、以及第三等的使用不表示任何顺序。可将这些单词解释为名称。It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.

Claims (10)

1.一种获取子域名的方法,其特征在于,所述方法包括:1. A method for obtaining a subdomain name, characterized in that the method comprises: 在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;After determining the parent domain name, detecting whether the Domain Name System DNS server corresponding to the parent domain name contains a DNS domain transfer vulnerability; 若所述DNS服务器含有DNS域传送漏洞,则基于所述DNS域传送漏洞获取所述父域名的所有子域名;If the DNS server contains a DNS domain transmission vulnerability, then obtain all subdomain names of the parent domain name based on the DNS domain transmission vulnerability; 若所述DNS服务器没有DNS域传送漏洞,则获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;If the DNS server has no DNS domain transfer vulnerability, then obtain the first set of sub-domain names of the parent domain name recorded in the search engine, and obtain the second set of sub-domain names of the parent domain name according to the preset domain name rule base, the The preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name; 对所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。Deduplicating the subdomain names in the third subdomain name set formed by the first subdomain name set and the second subdomain name set to obtain all subdomain names of the parent domain name. 2.根据权利要求1所述的方法,其特征在于,所述基于所述DNS域传送漏洞获取所述父域名的所有子域名,包括:2. The method according to claim 1, wherein the obtaining all subdomain names of the parent domain name based on the DNS domain transfer vulnerability comprises: 向所述DNS服务器发送域名列表请求;Send a domain name list request to the DNS server; 接收所述DNS服务器根据所述域名列表请求发送的域名列表,所述域名列表中记录有网络中所有的域名与网站IP地址的对应关系;Receiving the domain name list sent by the DNS server according to the domain name list request, the domain name list records the correspondence between all domain names in the network and the IP addresses of websites; 从所述域名列表中获取所述父域名的所有子域名。Obtain all subdomain names of the parent domain name from the domain name list. 3.根据权利要求1所述的方法,其特征在于,所述获取搜索引擎中记录的所述父域名的第一子域名集合,包括:3. The method according to claim 1, wherein said acquiring the first sub-domain name set of said parent domain name recorded in the search engine comprises: 分别获取各个搜索引擎中记录的所述父域名的子域名;Respectively obtain the sub-domain names of the parent domain names recorded in each search engine; 将获得的所有搜索引擎中记录的所述父域名的子域名构成的集合确定为所述第一子域名集合。The obtained set of subdomain names of the parent domain name recorded in all search engines is determined as the first set of subdomain names. 4.根据权利要求3所述的方法,其特征在于,所述分别获取各个搜索引擎中记录的所述父域名的子域名,包括:4. The method according to claim 3, wherein said acquiring the sub-domain names of said parent domain name recorded in each search engine respectively comprises: 基于搜索引擎,通过查询命令获取所述搜索引擎中记录的所述父域名的子域名。Based on the search engine, the subdomain name of the parent domain name recorded in the search engine is acquired through a query command. 5.根据权利要求4所述的方法,其特征在于,所述查询命令包括site命令。5. The method according to claim 4, wherein the query command comprises a site command. 6.根据权利要求1所述的方法,其特征在于,所述根据预设域名规则库获得所述父域名的第二子域名集合,包括:6. The method according to claim 1, wherein the obtaining the second sub-domain name set of the parent domain name according to the preset domain name rule base comprises: 基于所述预设域名规则库中的子域名构建规则,构建所述父域名对应的虚拟子域名;Constructing a virtual subdomain name corresponding to the parent domain name based on the subdomain construction rules in the preset domain name rule library; 若所述虚拟子域名对应的统一资源定位符URL存在,则将所述虚拟子域名确定为所述父域名的子域名;If the uniform resource locator URL corresponding to the virtual sub-domain name exists, then determine the virtual sub-domain name as a sub-domain name of the parent domain name; 将确定的所述父域名的子域名构成的集合确定为所述第二子域名集合。determining the determined set of sub-domain names of the parent domain name as the second set of sub-domain names. 7.根据权利要求1至6中任一项所述的方法,其特征在于,在所述基于所述DNS域传送漏洞获取所述父域名的所有子域名之后,所述方法还包括:7. The method according to any one of claims 1 to 6, characterized in that, after acquiring all subdomain names of the parent domain name based on the DNS domain transfer vulnerability, the method further comprises: 向所述DNS服务器发送漏洞通知,所述漏洞通知包括漏洞类型。sending a vulnerability notification to the DNS server, where the vulnerability notification includes a type of vulnerability. 8.一种获取子域名的装置,其特征在于,所述装置包括:8. A device for obtaining a subdomain name, characterized in that the device comprises: 检测单元,用于在确定父域名后,检测所述父域名对应的域名系统DNS服务器是否含有DNS域传送漏洞;The detection unit is used to detect whether the domain name system DNS server corresponding to the parent domain name contains a DNS domain transmission vulnerability after the parent domain name is determined; 获取单元,用于当所述检测单元的检测结果为所述DNS服务器含有DNS域传送漏洞时,基于所述DNS域传送漏洞获取所述父域名的所有子域名;An obtaining unit, configured to obtain all subdomain names of the parent domain name based on the DNS domain transfer vulnerability when the detection result of the detection unit is that the DNS server contains a DNS domain transfer vulnerability; 所述获取单元,还用于当所述DNS服务器没有DNS域传送漏洞时,获取搜索引擎中记录的所述父域名的第一子域名集合,以及根据预设域名规则库获得所述父域名的第二子域名集合,所述预设域名规则库用于记录构建父域名下各个子域名的规则;The obtaining unit is further configured to obtain the first sub-domain name set of the parent domain name recorded in the search engine when the DNS server has no DNS domain transfer vulnerability, and obtain the first sub-domain name set of the parent domain name according to a preset domain name rule base The second set of sub-domain names, the preset domain name rule library is used to record the rules for constructing each sub-domain name under the parent domain name; 去重单元,用于对所述获取单元获得的所述第一子域名集合以及所述第二子域名集合构成的第三子域名集合中的子域名进行去重处理,获得所述父域名的所有子域名。A de-duplication unit, configured to de-duplicate the sub-domain names in the third sub-domain name set formed by the first sub-domain name set and the second sub-domain name set obtained by the acquisition unit, and obtain the parent domain name All subdomains. 9.根据权利要求8所述的装置,其特征在于,所述获取单元,包括:9. The device according to claim 8, wherein the acquiring unit comprises: 发送模块,用于向所述DNS服务器发送域名列表请求;A sending module, configured to send a domain name list request to the DNS server; 接收模块,用于接收所述DNS服务器根据所述域名列表请求发送的域名列表,所述域名列表中记录有网络中所有的域名与网站IP地址的对应关系;The receiving module is used to receive the domain name list sent by the DNS server according to the domain name list request, and the corresponding relationship between all domain names and website IP addresses in the network is recorded in the domain name list; 第一获取模块,用于从所述接收模块接收的所述域名列表中获取所述父域名的所有子域名。A first acquiring module, configured to acquire all subdomain names of the parent domain name from the domain name list received by the receiving module. 10.根据权利要求8所述的装置,其特征在于,所述获取单元,包括:10. The device according to claim 8, wherein the acquiring unit comprises: 第二获取模块,用于分别获取各个搜索引擎中记录的所述父域名的子域名;The second obtaining module is used to respectively obtain the sub-domain names of the parent domain names recorded in each search engine; 第一确定模块,用于将获得的所有搜索引擎中记录的所述父域名的子域名构成的集合确定为所述第一子域名集合。The first determining module is configured to determine the obtained set of sub-domain names of the parent domain name recorded in all search engines as the first set of sub-domain names.
CN201510981405.2A 2015-12-23 2015-12-23 Method and device for acquiring subdomain names Pending CN105407186A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510981405.2A CN105407186A (en) 2015-12-23 2015-12-23 Method and device for acquiring subdomain names

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510981405.2A CN105407186A (en) 2015-12-23 2015-12-23 Method and device for acquiring subdomain names

Publications (1)

Publication Number Publication Date
CN105407186A true CN105407186A (en) 2016-03-16

Family

ID=55472430

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510981405.2A Pending CN105407186A (en) 2015-12-23 2015-12-23 Method and device for acquiring subdomain names

Country Status (1)

Country Link
CN (1) CN105407186A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107197058A (en) * 2017-07-21 2017-09-22 北京亚鸿世纪科技发展有限公司 A kind of high coverage and accurate domain name IP corresponding relations acquisition methods and device
CN107979657A (en) * 2017-12-18 2018-05-01 联想(北京)有限公司 Dns address processing method and system for the network equipment
CN108574742A (en) * 2017-03-10 2018-09-25 腾讯科技(深圳)有限公司 Domain-name information collection method and domain-name information collection device
CN108900581A (en) * 2018-06-12 2018-11-27 恒安嘉新(北京)科技股份公司 A kind of method for building up of the key feature knowledge base of large-scale website
CN110300193A (en) * 2019-07-01 2019-10-01 北京微步在线科技有限公司 A kind of method and apparatus obtaining entity domain name
CN111432041A (en) * 2020-02-29 2020-07-17 深圳壹账通智能科技有限公司 Domain name acquisition method, system, terminal and computer readable storage medium
CN113158660A (en) * 2021-04-09 2021-07-23 深圳市联软科技股份有限公司 Sub-domain name discovery method and system applied to penetration test
CN114765599A (en) * 2021-01-13 2022-07-19 腾讯科技(深圳)有限公司 Sub-domain name acquisition method and device

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103399871A (en) * 2013-07-09 2013-11-20 北京奇虎科技有限公司 Equipment and method for capturing second-level domain information associated with main domain
CN103618742A (en) * 2013-12-09 2014-03-05 北京奇虎科技有限公司 Method and system for acquiring sub domain names and webmaster permission verification method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103399871A (en) * 2013-07-09 2013-11-20 北京奇虎科技有限公司 Equipment and method for capturing second-level domain information associated with main domain
CN103618742A (en) * 2013-12-09 2014-03-05 北京奇虎科技有限公司 Method and system for acquiring sub domain names and webmaster permission verification method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
TDIFG: "如何获得一个域名下的所有地址", 《HTTP://CN.V2EX.COM/T/212324》 *

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108574742A (en) * 2017-03-10 2018-09-25 腾讯科技(深圳)有限公司 Domain-name information collection method and domain-name information collection device
CN108574742B (en) * 2017-03-10 2021-04-16 腾讯科技(深圳)有限公司 Domain name information collection method and domain name information collection device
CN107197058A (en) * 2017-07-21 2017-09-22 北京亚鸿世纪科技发展有限公司 A kind of high coverage and accurate domain name IP corresponding relations acquisition methods and device
CN107197058B (en) * 2017-07-21 2019-09-17 北京亚鸿世纪科技发展有限公司 A kind of high coverage and accurate domain name IP corresponding relationship acquisition methods and device
CN107979657A (en) * 2017-12-18 2018-05-01 联想(北京)有限公司 Dns address processing method and system for the network equipment
CN108900581A (en) * 2018-06-12 2018-11-27 恒安嘉新(北京)科技股份公司 A kind of method for building up of the key feature knowledge base of large-scale website
CN110300193A (en) * 2019-07-01 2019-10-01 北京微步在线科技有限公司 A kind of method and apparatus obtaining entity domain name
CN110300193B (en) * 2019-07-01 2021-07-06 北京微步在线科技有限公司 A method and device for obtaining an entity domain name
CN111432041A (en) * 2020-02-29 2020-07-17 深圳壹账通智能科技有限公司 Domain name acquisition method, system, terminal and computer readable storage medium
CN114765599A (en) * 2021-01-13 2022-07-19 腾讯科技(深圳)有限公司 Sub-domain name acquisition method and device
CN114765599B (en) * 2021-01-13 2024-04-05 腾讯科技(深圳)有限公司 Subdomain name acquisition method and device
CN113158660A (en) * 2021-04-09 2021-07-23 深圳市联软科技股份有限公司 Sub-domain name discovery method and system applied to penetration test

Similar Documents

Publication Publication Date Title
CN105407186A (en) Method and device for acquiring subdomain names
CN107003877B (en) Contextual deep links for applications
US10164988B2 (en) External link processing
US9215242B2 (en) Methods and systems for preventing unauthorized acquisition of user information
CN102333122B (en) Downloaded resource provision method, device and system
US9058490B1 (en) Systems and methods for providing a secure uniform resource locator (URL) shortening service
CN103095530B (en) The monitoring of a kind of sensitive information based on preposition gateway and leakage prevention method and system
CN103268328B (en) The verification method of Quick Response Code and search engine server
CN110677384A (en) Method and device for detecting phishing website, storage medium and electronic device
CN106534268B (en) Data sharing method and device
WO2018113730A1 (en) Method and apparatus for detecting network security
CN108156270B (en) Domain name request processing method and device
CN110929185B (en) Website directory detection method and device, computer equipment and computer storage medium
US10104116B2 (en) System for detecting link spam, a method, and an associated computer readable medium
CN103796046B (en) A kind of video source address detection method and device
CN105138912A (en) Method and device for generating phishing website detection rules automatically
US10462180B1 (en) System and method for mitigating phishing attacks against a secured computing device
CN103929498B (en) The method and apparatus for handling client request
CN108664493A (en) Count the whether effective method, apparatus of URL, electronic equipment and storage medium
CN102917053B (en) A kind of method, apparatus and system for judging webpage urlrewriting
CN104021143A (en) Method and device for recording webpage access behavior
CN105009122A (en) System and method to allow a domain name server to process a natural language query and determine context
JP6136558B2 (en) Information processing device, electronic data retrieval system
CN108632050A (en) A kind of method and apparatus of record web log
CN106713217B (en) A verification method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20160316

RJ01 Rejection of invention patent application after publication