dns-monitor 0.1.7

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 65b7d37e5226c986ff4203bbdc37095b6c5b8468aecfdf7bc1e5516d8ea98ec8
+  data.tar.gz: b56437c517597311556fa0e18ff76d2eb077e85d9726ccc344eda45dcd50f5a4
+SHA512:
+  metadata.gz: 67f4049c13cc79dfc99edbdf8fa0806dc934014fb6809016e7ce37901972719c69f4182a4ad3934465edb06a6a8f3b1840b7cc4c2ebfd145882c95d02e61101f
+  data.tar.gz: 8eca6a23137098f6855ce7ebb8381787421ce57dc5e27e035db8a074cd4bbc89fca4fc68d0639e5da066c3b8671848bbaada842ebca1402b3b8955ab6f9981f2

data/.gitignore

@@ -0,0 +1,10 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+*.sw*

data/.ruby-version

@@ -0,0 +1 @@
+2.6.3

data/.travis.yml

@@ -0,0 +1,7 @@
+---
+sudo: false
+language: ruby
+cache: bundler
+rvm:
+  - 2.4.2
+before_install: gem install bundler -v 1.16.4

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,74 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as
+contributors and maintainers pledge to making participation in our project and
+our community a harassment-free experience for everyone, regardless of age, body
+size, disability, ethnicity, gender identity and expression, level of experience,
+nationality, personal appearance, race, religion, or sexual identity and
+orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment
+include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or
+advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic
+  address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable
+behavior and are expected to take appropriate and fair corrective action in
+response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community. Examples of
+representing a project or community include using an official project e-mail
+address, posting via an official social media account, or acting as an appointed
+representative at an online or offline event. Representation of a project may be
+further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting the project team at dmerand@explo.org. All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. The project team is
+obligated to maintain confidentiality with regard to the reporter of an incident.
+Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good
+faith may face temporary or permanent repercussions as determined by other
+members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
+available at [http://contributor-covenant.org/version/1/4][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/4/

data/Gemfile

@@ -0,0 +1,6 @@
+source "https://rubygems.org"
+
+git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in dns-monitor.gemspec
+gemspec

data/Gemfile.lock

@@ -0,0 +1,32 @@
+PATH
+  remote: .
+  specs:
+    dns-monitor (0.1.7)
+      easy_diff (~> 1.0.0)
+      sqlite3 (~> 1.4.2)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    coderay (1.1.2)
+    easy_diff (1.0.0)
+    method_source (0.9.2)
+    minitest (5.14.0)
+    pry (0.12.2)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    rake (13.0.1)
+    sqlite3 (1.4.2)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  bundler (~> 2.0.2)
+  dns-monitor!
+  minitest (~> 5.0)
+  pry (~> 0.12.2)
+  rake (~> 13.0)
+
+BUNDLED WITH
+   2.0.2

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2020 Donald Merand
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,110 @@
+# DNS::Monitor
+
+[![Gem Version](https://badge.fury.io/rb/dns-monitor.svg)](https://badge.fury.io/rb/dns-monitor)
+
+The point of this gem is to monitor your hosts for (unwanted) DNS changes. The `dns-monitor` app is designed to be run as a CRON job. It takes a return-delimited text file listing domain names, and checks an [RDAP](https://www.icann.org/rdap) database (which you can specify) for JSON entries that match. You will get an error, optionally by GChat, if you encounter a changed entry.
+
+If you don't think this is something you need, perhaps give [this article](https://krebsonsecurity.com/2019/02/a-deep-dive-on-the-recent-widespread-dns-hijacking-attacks/) a read.
+
+
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'dns-monitor'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install dns-monitor
+
+
+
+## Usage
+
+For usage, run `dns-monitor -h`.
+
+Since we use them at [EXPLO](https://www.explo.org), we've added flags to send notifications directly via Google Hangouts Chat or via a Mandrill API call. The script will also send updates to STDOUT and STDERR as necessary, so if you don't use either of those services you can pipe output into whichever notification setup you prefer.
+
+### Checking All Hosts
+
+The main mode is `--check` or `-c`, which will check all hosts in your host file (just a return-delimited text file of top-level hostnames) for DNS changes. Changes will be stored in an SQLite3 database and logged. As noted above, you can be optionally alerted by GChat or email, or you can simply pipe output into whichever alert utility you prefer.
+
+### Checking a Specific Domain
+
+You can get all domain history for a specific domain like this:
+
+```bash
+dns-monitor --domain DOMAIN
+```
+
+You'll get a JSON array of RDAP entries back - every change that's been logged on that domain since you started tracking.
+
+### RDAP Server
+
+DNS::Monitor uses [RDAP](https://www.icann.org/rdap) for checking WHOIS records, because it gives you JSON back! The nice thing about this is that because it's all just JSON + hashes, DNS::Monitor can only display specifically what changed for a domain.
+
+We use and love [Pair Domains](https://pairdomains.com) as our registrar, so we've coded their RDAP server in by default, but if you have a different registrar, you'll want to pass a flag to change that server eg:
+
+```bash
+dns-monitor --check --rdap_url https://your-rdap-server.com
+```
+
+### File Paths
+
+Since the script is designed to be run as a CRON job, you can specify with flags where you want to store your `hosts.txt` and database (sqlite) file:
+
+```bash
+dns-monitor --check --db_path "/your/db/folder/and_filename.sqlite3" --domains_path "/your/domains/textfile/folder/and_filename.txt"
+```
+
+
+### Usage with Google Hangouts Chat
+
+To use with Google Hangouts Chat, you'll need to set up a webhook in the appropriate chat room. You'll get a webhook URL which you can send to `dns-monitor` with `-g` or `--gchat` like this:
+
+```bash
+dns-monitor --check --gchat YOUR_WEBHOOK_URL
+```
+
+### Usage with Mandrill
+
+To use with Mandrill, you'll need an API key capable of sending messages, and a recipient email. The 'from' email will automatically be set to `dns-monitor` at your domain, so if you sent `donald@explo.org`, the `FROM` address would be `dns-monitor@explo.org`.
+
+You need to set both flags on the command-line client for Mandrill to be activated, and emails will only be sent if there are changes to the domain list since the previous run:
+
+```bash
+dns-monitor --check --mandrill_api "YOURAPIKEY" --mandrill_email "recipient@yourdomain.com"
+```
+
+
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake test` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+
+
+## Contributing
+
+Bug reports and pull requests are welcome on Bitbucket at https://github.com/exploration/dns-monitor. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
+
+
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
+
+
+
+## Code of Conduct
+
+Everyone interacting in the DNS::Monitor project’s codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/exploration/dns-monitor/blob/master/CODE_OF_CONDUCT.md).

data/Rakefile

@@ -0,0 +1,10 @@
+require "bundler/gem_tasks"
+require "rake/testtask"
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << "test"
+  t.libs << "lib"
+  t.test_files = FileList["test/**/*_test.rb"]
+end
+
+task :default => :test

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "dns/monitor"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+require "pry"
+Pry.start
+
+#require "irb"
+#IRB.start(__FILE__)

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/dns-monitor.gemspec

@@ -0,0 +1,46 @@
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require "dns/monitor/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "dns-monitor"
+  spec.version       = DNS::Monitor::VERSION
+  spec.authors       = ["Donald Merand"]
+  spec.email         = ["dmerand@explo.org"]
+
+  spec.summary       = %q{Monitor a list of hosts for DNS changes}
+  spec.description   = <<~DESCRIPTION
+    The point of this gem is to monitor your hosts for (unwanted) DNS changes.
+    The `dns-monitor` file is designed to be run as a CRON job. It takes a
+    return-delimited text file listing domain names, and checks an RDAP
+    database (which you can specify) for JSON entries that match. 
+  DESCRIPTION
+  spec.homepage      = "https://github.com/exploration/dns-monitor"
+  spec.license       = "MIT"
+
+  # Prevent pushing this gem to RubyGems.org. To allow pushes either set the 'allowed_push_host'
+  # to allow pushing to a single host or delete this section to allow pushing to any host.
+  if spec.respond_to?(:metadata)
+    spec.metadata["allowed_push_host"] = "https://rubygems.org"
+  else
+    raise "RubyGems 2.0 or newer is required to protect against " \
+      "public gem pushes."
+  end
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files         = Dir.chdir(File.expand_path('..', __FILE__)) do
+    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  end
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 2.0.2"
+  spec.add_development_dependency "rake", "~> 13.0"
+  spec.add_development_dependency "minitest", "~> 5.0"
+  spec.add_development_dependency "pry", "~> 0.12.2"
+
+  spec.add_dependency "sqlite3", "~>1.4.2"
+  spec.add_dependency "easy_diff", "~>1.0.0"
+end

data/exe/dns-monitor

@@ -0,0 +1,39 @@
+#!/usr/bin/env ruby
+
+require 'dns/monitor'
+
+
+# Working directory
+def wd(*path_bits)
+  File.join Dir.pwd, *path_bits
+end
+
+
+# Default params
+params = {
+  db_path: ENV['DB_PATH'] || wd('dns-monitor.sqlite3'),
+  domains_path: ENV['DOMAINS_PATH'] || wd('dns_monitor_hosts.txt'),
+  rdap_url: ENV['RDAP_URL'] || 'https://www.pairdomains.com/rdap'
+}
+
+
+# Command-line options
+OptionParser.new do |opts|
+  opts.on('-g', '--gchat URL', String, 'Optional GChat webhook URL for notifications')
+  opts.on('-c', '--check', 'Check your domain name list')
+  opts.on('-d', '--db_path PATH', String, "Path to the database file. Defaults to #{params[:db_path]}")
+  opts.on('-h', '--help', 'Print this help') do
+    puts opts
+    exit 1
+  end
+  opts.on('-p', '--domains_path PATH', String, "Path to your domain file list. Defaults to #{params[:domains_path]}")
+  opts.on('-m', '--domain DOMAIN', String, 'Print existing results for a given domain as a JSON array')
+  opts.on('-u', '--rdap_url URL', String, "URL of your RDAP resolver. Defaults to #{params[:rdap_url]}")
+  opts.on('--mandrill_key KEY', String, "Mandrill API key. REQUIRES --mandrill-email to work.")
+  opts.on('--mandrill_email EMAIL', String, "Mandrill recipient email.")
+end.parse!(into: params)
+
+
+# Do the things
+DNS::Monitor::Runner.new(params).check if params[:check]
+DNS::Monitor::Runner.new(params).entries if params[:domain]

data/lib/dns/monitor.rb

@@ -0,0 +1,18 @@
+require 'easy_diff'
+require 'json'
+require 'net/http'
+require 'optparse'
+require 'sqlite3'
+
+require 'dns/monitor/version'
+require 'dns/monitor/check'
+require 'dns/monitor/database'
+require 'dns/monitor/domain'
+require 'dns/monitor/gchat'
+require 'dns/monitor/mandrill'
+require 'dns/monitor/runner'
+
+module DNS
+  module Monitor
+  end
+end

data/lib/dns/monitor/check.rb

@@ -0,0 +1,35 @@
+module DNS
+  module Monitor
+    class Check
+      # A "Check" is an encapsulated domain query result.
+      def initialize(domain, status, diff={})
+        @diff = diff
+        @domain = domain
+        @status = status
+      end
+
+      def changed?
+        @status == :changed
+      end
+
+      def ok?
+        @status == :ok
+      end
+
+      def status
+        case @status
+          when :ok
+            { domain: @domain, ok: true }
+          when :changed
+            { domain: @domain, changes: @diff }
+          else
+            :error
+        end
+      end
+
+      def to_s
+        status.inspect
+      end
+    end
+  end
+end

data/lib/dns/monitor/database.rb

@@ -0,0 +1,92 @@
+module DNS
+  module Monitor
+    class Database
+      # This is the general DB structure
+      TABLE = 'domains'
+
+      def initialize(db_path)
+        @db_path = db_path
+        initialize_db
+      end
+
+      # Returns a Check object, or nothing if the params were empty
+      def check(domain, rdap)
+        return if domain.nil? || rdap.nil?
+
+        changes = diff((most_recent(domain).rdap || '{}'), rdap)
+
+        if changes.empty?
+          Check.new domain, :ok
+        else
+          insert(domain, rdap)
+          Check.new domain, :changed, changes
+        end
+      end
+
+      # This is mostly for testing
+      def clear
+        query { |db| db.execute "DELETE FROM #{TABLE} WHERE 1" }
+      end
+
+      # Compare two different RDAP values
+      # NOTE: We have to do a JSON conversion to compare instead of
+      # String, because the values come back from the server in arbitrary JSON
+      # key order.
+      def diff(previous_rdap, rdap)
+        # easy_diff returns [added, removed] hashes, we want "removed"
+        changes = JSON.parse(previous_rdap).easy_diff(JSON.parse(rdap)).last
+        filter_noisy_keys(changes)
+      end
+
+      # Return all entries for a given domain as a Domain struct
+      def entries(domain)
+        sql = "SELECT * FROM #{TABLE} WHERE domain=? ORDER BY created_at DESC"
+        query {|db| db.execute(sql, [domain]) }.map{ |row| Domain.new(*row) }
+      end
+
+      def filter_noisy_keys(changes)
+        # We get a lot of "last update of RDAP" events which aren't something
+        # we need notifications about. Remove those.
+        # WARNING: mutation follows
+        if changes.fetch('events', false)
+          changes['events'] = changes['events'].reject do |event|
+            event.fetch('eventAction', '').match?(/last update of RDAP/i)
+          end
+          changes.delete('events') if changes['events'].empty?
+        end
+        changes
+      end
+
+      # Just the latest entry plz
+      def most_recent(domain)
+        entries(domain).first || Domain.new
+      end
+
+      private
+
+        def initialize_db
+          query do |db| db.execute <<~SQL
+            CREATE TABLE IF NOT EXISTS #{TABLE} (
+              domain VARCHAR(255),
+              rdap TEXT,
+              created_at TIMESTAMP DEFAULT (DATETIME('now','localtime'))
+            );
+          SQL
+          end
+        end
+
+        def insert(domain, rdap)
+          query do |db|
+            db.execute "INSERT INTO #{TABLE} (domain, rdap) VALUES (?,?)", [ domain, rdap ]
+          end
+        end
+
+        def query
+          db = SQLite3::Database.new @db_path
+          result = yield db
+          db.close if db
+          result
+        end
+    end
+  end
+end

data/lib/dns/monitor/domain.rb

@@ -0,0 +1,15 @@
+module DNS
+  module Monitor
+
+    # It's handy to be able to refer to Domains as objects
+    Domain = Struct.new(:name, :rdap, :created_at) do
+      def to_parsed_h
+        to_h.merge(rdap: JSON.parse(self.rdap))
+      end
+
+      def to_s
+        to_parsed_h.to_json
+      end
+    end
+  end
+end

data/lib/dns/monitor/gchat.rb

@@ -0,0 +1,17 @@
+module DNS
+  module Monitor
+    class GChat
+      def initialize(webhook_url)
+        @webhook_url = webhook_url
+      end
+
+      def message(text)
+        Net::HTTP.post(
+          URI(@webhook_url), 
+          {text: text}.to_json, 
+          'Content-Type' => 'application/json'
+        )
+      end
+    end
+  end
+end

data/lib/dns/monitor/mandrill.rb

@@ -0,0 +1,114 @@
+module DNS
+  module Monitor
+    class Mandrill
+      API_URL = 'https://mandrillapp.com/api/1.0/messages/send.json'
+
+      attr_reader :from_email, :recipient_email
+
+      def initialize(api_key, recipient_email)
+        @api_key = api_key
+        @recipient_email = recipient_email
+        @from_email = "dns-monitor@#{@recipient_email.split('@').last}"
+      end
+
+      def message(text)
+        Net::HTTP.post(
+          URI(API_URL), 
+          request(text).to_json, 
+          'Content-Type' => 'application/json'
+        )
+      end
+
+      def request(text)
+        {
+          "key" => @api_key,
+          "message" => {
+              #"html" => "<p>Example HTML content</p>",
+              "text" => text,
+              "subject" => "DNS Change Alert",
+              "from_email" => @from_email,
+              "from_name" => "DNS Monitor",
+              "to" => [
+                  {
+                      "email" => @recipient_email,
+                      "name" => @recipient_email,
+                      "type" => "to"
+                  }
+              ],
+              #"headers" => {
+                  #"Reply-To" => "message.reply@example.com"
+              #},
+              #"important" => false,
+              #"track_opens" => null,
+              #"track_clicks" => null,
+              #"auto_text" => null,
+              #"auto_html" => null,
+              #"inline_css" => null,
+              #"url_strip_qs" => null,
+              #"preserve_recipients" => null,
+              #"view_content_link" => null,
+              #"bcc_address" => "message.bcc_address@example.com",
+              #"tracking_domain" => null,
+              #"signing_domain" => null,
+              #"return_path_domain" => null,
+              #"merge" => true,
+              #"merge_language" => "mailchimp",
+              #"global_merge_vars" => [
+                  #{
+                      #"name" => "merge1",
+                      #"content" => "merge1 content"
+                  #}
+              #],
+              #"merge_vars" => [
+                  #{
+                      #"rcpt" => "recipient.email@example.com",
+                      #"vars" => [
+                          #{
+                              #"name" => "merge2",
+                              #"content" => "merge2 content"
+                          #}
+                      #]
+                  #}
+              #],
+              #"tags" => [
+                  #"password-resets"
+              #],
+              #"subaccount" => "customer-123",
+              #"google_analytics_domains" => [
+                  #"example.com"
+              #],
+              #"google_analytics_campaign" => "message.from_email@example.com",
+              #"metadata" => {
+                  #"website" => "www.example.com"
+              #},
+              #"recipient_metadata" => [
+                  #{
+                      #"rcpt" => "recipient.email@example.com",
+                      #"values" => {
+                          #"user_id" => 123456
+                      #}
+                  #}
+              #],
+              #"attachments" => [
+                  #{
+                      #"type" => "text/plain",
+                      #"name" => "myfile.txt",
+                      #"content" => "ZXhhbXBsZSBmaWxl"
+                  #}
+              #],
+              #"images" => [
+                  #{
+                      #"type" => "image/png",
+                      #"name" => "IMAGECID",
+                      #"content" => "ZXhhbXBsZSBmaWxl"
+                  #}
+              #]
+          },
+          #"async" => false,
+          #"ip_pool" => "Main Pool",
+          #"send_at" => "example send_at"
+        }
+      end
+    end
+  end
+end

data/lib/dns/monitor/runner.rb

@@ -0,0 +1,48 @@
+module DNS
+  module Monitor
+    class Runner
+      # The "Runner" is the back-end for the command-line utility
+      def initialize(params)
+        @params = params
+      end
+
+      # This is the main action we do with this app - check all of the domains
+      def check
+        begin
+          domains = File.read(@params[:domains_path]).split
+        rescue Errno::ENOENT 
+          STDERR.puts "File #{@params[:domains_path]} does not exist"
+          exit 1 
+        end
+
+        checks = domains.map do |domain|
+          rdap = Net::HTTP.get(URI("#{@params[:rdap_url]}/domain/#{domain}"))
+          db.check domain, rdap 
+        end
+
+        message = checks.map {|check| check.status}.to_json
+        STDOUT.puts message
+
+        if @params[:gchat] 
+          # GChat gets every status update
+          GChat.new(@params[:gchat]).message(message) 
+        end
+        if @params[:mandrill_key] && @params[:mandrill_email] && checks.any?(&:changed?)
+          # We only email changed domains
+          Mandrill.new(@params[:mandrill_key], @params[:mandrill_email]).message(message)
+        end
+      end
+
+      # This is an alternative app action - check the history for a particular domain.
+      def entries
+        STDOUT.puts db.entries(@params[:domain]).map{|row| row.to_parsed_h}.to_json
+      end
+
+      private
+        
+        def db
+          @db ||= Database.new(@params[:db_path])
+        end
+    end
+  end
+end

data/lib/dns/monitor/version.rb

@@ -0,0 +1,5 @@
+module DNS
+  module Monitor
+    VERSION = "0.1.7"
+  end
+end

metadata

@@ -0,0 +1,153 @@
+--- !ruby/object:Gem::Specification
+name: dns-monitor
+version: !ruby/object:Gem::Version
+  version: 0.1.7
+platform: ruby
+authors:
+- Donald Merand
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2020-03-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.0.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.0.2
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.12.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.12.2
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.4.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.4.2
+- !ruby/object:Gem::Dependency
+  name: easy_diff
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
+description: "The point of this gem is to monitor your hosts for (unwanted) DNS changes.\nThe
+  `dns-monitor` file is designed to be run as a CRON job. It takes a\nreturn-delimited
+  text file listing domain names, and checks an RDAP\ndatabase (which you can specify)
+  for JSON entries that match. \n"
+email:
+- dmerand@explo.org
+executables:
+- dns-monitor
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".ruby-version"
+- ".travis.yml"
+- CODE_OF_CONDUCT.md
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- dns-monitor.gemspec
+- exe/dns-monitor
+- lib/dns/monitor.rb
+- lib/dns/monitor/check.rb
+- lib/dns/monitor/database.rb
+- lib/dns/monitor/domain.rb
+- lib/dns/monitor/gchat.rb
+- lib/dns/monitor/mandrill.rb
+- lib/dns/monitor/runner.rb
+- lib/dns/monitor/version.rb
+homepage: https://github.com/exploration/dns-monitor
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.3
+signing_key: 
+specification_version: 4
+summary: Monitor a list of hosts for DNS changes
+test_files: []