http://open-source-security-software.net/project/analyzer-d4-passivedns/releases.atomRecent releases for analyzer-d4-passivedns2024-11-18T14:49:28.453918+00:00python-feedgenanalyzer-d4-passivedns v0.1analyzer-d4-passivedns v0.12019-04-05T14:11:57+00:00
# Features of the analyzer-d4-passivedns version 0.1
- A dedicated Passive DNS analyzer for D4 client (passive dns client type 8) to ingest passive DNS records into a Passive DNS COF server
- analyzer can filter out records coming from D4 sensors (such as specific types or records)
- analyzer can set an expiration time for specific DNS record type (to expire common data that should be removed from the Passive DNS after a specific time)
- A Passive DNS server supporting a REST API has been added to allow query and output of the Passive DNS records in [COF format](https://tools.ietf.org/html/draft-dulaunoy-dnsop-passive-dns-cof-05).
- A simple PDNS injector to reinject Passive DNS records in COF format (from other Passive DNS server) into the Passive DNS server.
2019-04-05T14:11:57+00:00analyzer-d4-passivedns v0.2analyzer-d4-passivedns v0.22020-07-28T13:11:44+00:00# Main changes
```
New
~~~
- [launcher] scripts that launch all components in screens -t. [Jean-
Louis Huynen]
Fix
~~~
- [launcher] Removed hardcoded paths. [airkeyp]
- [launcher] cd in subshell. [Jean-Louis Huynen]
Other
~~~~~
- Merge pull request #7 from axtux/master. [Alexandre Dulaunoy]
Fix IP/domain stripping and database directory
- Create db directory and correct path. [Axtux]
- Only remove extrema dots. [Axtux]
- Merge pull request #3 from trolldbois/master. [Alexandre Dulaunoy]
Use Environmental variables for redis
- Back to INFO. [ljaqueme]
- Let be simple. [ljaqueme]
- Superseed config with ENV if available. [ljaqueme]
- Support env for docker. [ljaqueme]
```
2020-07-28T13:11:44+00:00analyzer-d4-passivedns v0.5analyzer-d4-passivedns v0.52022-07-15T10:16:53+00:00analyzer-d4-passivedns is an analyzer for a D4 network sensor including a complete Passive DNS server. The analyser can process data produced by D4 sensors (in [passivedns](https://github.com/gamelinux/passivedns) CSV format (more to come)) or independently from D4 using [COF websocket](https://datatracker.ietf.org/doc/html/draft-dulaunoy-dnsop-passive-dns-cof) streams.
A new version of analyzer-d4-passivedns has been released which includes:
- Feeding from [COF websocket](https://datatracker.ietf.org/doc/html/draft-dulaunoy-dnsop-passive-dns-cof) stream (independently of D4 collection). A sample COF stream (newly seen IPv6 addresses and DNS records) is included in the documentation and kindly provided by CIRCL.
- Add new back-end for large Passive DNS server [kvrocks](https://kvrocks.apache.org/) instead of redis
2022-07-15T10:16:53+00:00