danielmiessler/SecLists

Rewrite of generate-environment-identifiers-dict.sh

Open

#1028 opened on May 30, 2024

View on GitHub
 (0 comments) (0 reactions) (1 assignee)PHP (70,918 stars) (25,003 forks)batch import
ci/cdenhancementhelp wanted

Description

Describe the feature request: The current script uses majestic's domain list, which may be missing a lot more domains as compared to the other lists in the checklist. Another issue that I find with it is that it makes a new (insecure) ssl session for every domain in the list, which is both insecure and inefficient.

More lists recommendations would be appreciated as these lists may be outdated.

Additional context: You can use this command to interact with the sql server directly psql -h crt.sh -p 5432 -U guest certwatch https://groups.google.com/g/crtsh/c/sUmV0mBz8bQ/m/K-6Vymd_AAAJ

Domain list https://hackertarget.com/top-million-site-list-download/ https://radar.cloudflare.com/domains https://www.domcop.com/top-10-million-websites https://s3-us-west-1.amazonaws.com/umbrella-static/index.html https://majestic.com/reports/majestic-million https://builtwith.com/top-sites https://tranco-list.eu/ https://statvoo.com/dl/top-1million-sites.csv.zip

Next steps:

  • Implement a script that pulls domains from domcorp, alexa, cloudflare, majestic and others
  • Dedupe the list/find better ways to extract environment ids
  • Change to use sql interface
  • I intend to open a pull request later

Contributor guide

Tech stack
shellsqlpostgresql
Domain
backenddatabasesecurity
Issue type
feature
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
3
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
half day
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
stale
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
clear
Prerequisites
Shell scriptingSQL (PostgreSQL)Understanding of domain lists
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
45
Research direction
The current script 'generate environment identifiers dict.sh' uses a limited domain list and insecure SSL sessions. The goal is to rewrite it to fetch from multiple domain lists (e.g., Tranco, Cloudflare, DomCop) via SQL interface to crt.sh, deduplicate, and be more efficient. Check the existing script's location and logic. Use the SQL command provided (psql h crt.sh ...) and integrate multiple list sources. Ensure deduplication and output format remains compatible. See https://groups.google.com/g/crtsh/c/sUmV0mBz8bQ/m/K 6Vymd AAAJ for reference.