npm - dnssim - Versions diffs - 1.0.0 - Mend

dnssim 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2021 Dustin Van Tate Testa
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,21 @@
+# dnssim - DNS Traffic Simulator
+Because they want to sell my DNS history, AT&T doesn't allow me to change the DNS server in the router I have to pay them to use. So I threw together this script which sends random requests -- making DNS data worthless.
+## Setup
+The app has no dependencies! Just use `npm run deploy`, `npm start` or `node main.js` and it should start making requests.
+### Environment Variables
+#### `DNS_SERVERS`
+Set this to a comma-separated list of ip addresses for DNS servers to send requests to.
+#### `THREADS`
+Maximum number of simultaneous requests to send. Comparable to number of active devices to simulate being on your network.
+## Same problem, different ISP?
+If your ISP is equally evil you can simply change the line in `main.js` starting with `dns.setServers([...` to use whatever DNS servers they're shoving down your throat.
+## Legal
+### ISP
+The volume of requests shouldn't be significantly higher than what would be generated from regular browsing activty and nowhere near enough to contribute to a DDoS. The purpose of the requests is only to mitigate the damage done by your willful violation of our privacy rights (as evidenced by language used on your website). Your support team says that in order to use a different DNS service one must change the DNS settings on all devices on the network (instead of the router we're required to use) but in reality many devices don't support such advanced network configuration settings (and doing so would degrade performance), so the best solution is just to generate fake requests so that the requests sent from unprotected devices are burried in bogus requests and authenticity cannot be verified. Your actions are introducing serious security risks to American consumers as DNS data can be used to, for example, find vulnerable IoT devices on a network.
+### User
+I do not recommend using this with a DNS server that you don't control or modifying the code to use multiple threads. If you're really paranoid about security I'd combine this with a VPN .

package/ecosystem.config.js ADDED Viewed

@@ -0,0 +1,10 @@
+// Note that PM2 logs really waste resources so probably better not to use
+module.exports = {
+  apps: [{
+    name: "dnssim",
+    script: "./main.js",
+    env: {
+      THREADS: 15,
+    },
+  }]
+};

package/known_sites.js ADDED Viewed

@@ -0,0 +1,112 @@
+module.exports = [
+    // Shameless self-promotion
+    'dvtt.net',
+    'xtie.net',
+    'xssaas.com',
+    'bodge.dev',
+    'dvtate.github.io',
+    'corki.js.org',
+    'ridder.xyz',
+    'xss.software',
+    'gitadopt.org',
+    'gitadopt.com',
+    // Promos
+    'birdmonitors.net',
+    'ubuntu.com',
+    'archlinux.org',
+    'redhat.com',
+    '996.icu',
+    'www.spamhaus.org',
+    'githubcopilotinvestigation.com',
+    'tilde.club',
+    'infoseccorp.com',
+    // Public good
+    'wikipedia.org',
+    // Popular search engines
+    'google.com',
+    'ddg.co',
+    'duckduckgo.com',
+    'searx.work',
+    'goo.gl',
+    // Gaming
+    'leagueoflegends.com',
+    'riotgames.com',
+    'lol.gg',
+    'op.gg',
+    'lolalytics.com',
+    // Shopping
+    'ebay.com',
+    'walmart.com',
+    'amazon.com',
+    'bestbuy.com',
+    // Tech
+    'apple.com',
+    'intel.com',
+    'amazon.com',
+    'hp.com',
+    // Social media
+    'fb.com',
+    'facebook.com',
+    'myspace.com',
+    'reddit.com',
+    'twitter.com',
+    'youtube.com',
+    // 'tiktok.com',
+    'snapchat.com',
+    't.co',
+    'aol.com',
+    'blogger.com',
+    'tumblr.com',
+    'pinterest.com',
+    'blogspot.com',
+    'yelp.com',
+    // news
+    'cnn.com',
+    'wsj.com',
+    'reuters.com',
+    'apnews.com',
+    'bloomberg.com',
+    'yahoo.com',
+    'gizmodo.com',
+    'sciencedirect.com',
+    'forbes.com',
+    'nature.com',
+    'wired.co.uk',
+    'cnet.com',
+    'nola.com',
+    'nypost.com',
+    // Entertainment
+    'netflix.com',
+    'twitch.tv',
+    'youtube.com',
+    'last.fm',
+    'spotify.com',
+    'pandora.com',
+    // Nerd
+    'github.com',
+    'stackoverflow.com',
+    // Schools
+    'iit.edu',
+    'uchicago.edu',
+    // Other
+    'wix.com',
+    'zoom.earth',
+    'robinhood.com',
+    'x.com',
+    'wasm.builders',
+    'feedburner.com',
+];

package/main.js ADDED Viewed

@@ -0,0 +1,51 @@
+const os = require('os');
+const dns = require('dns');
+const genDomain = require('./site_generator');
+const knownSites = require('./known_sites');
+dns.setServers(
+    process.env.DNS_SERVERS
+    ? process.env.DNS_SERVERS.split(',')
+    : [ '68.94.156.1', '68.94.157.1' ] // AT&T DNS servers
+);
+let requestsSent = 0;
+const spacepad = '                                                            ';
+function randLookup() {
+    const domain = genDomain({ minLength: 3, maxLength: 20 });
+    process.stdout.write(`\r[${requestsSent++}] resolve ${domain}${spacepad}`);
+    dns.resolveAny(domain, err => {
+        if (err && err.code !== 'ENOTFOUND')
+            console.error(`\rERROR: lookup ${domain}:`, err.code, '                                   ');
+        // If server is busy, slow down
+        if (os.loadavg()[0] > 0.5)
+            setTimeout(randLookup, 1000);
+        else
+            randLookup();
+    });
+}
+// Spawn threads
+const nThreads = process.env.THREADS || 16;
+for (let i = 0; i < nThreads; i++)
+    randLookup();
+console.log(`\nSpawned ${nThreads} random lookup threads`);
+function knownLookup() {
+    const domain = knownSites[Math.floor(Math.random() * knownSites.length)];
+    // process.stdout.write(`\r[${requestsSent++}] dig ${domain}${}`);
+    requestsSent++;
+    dns.resolveAny(domain, err => {
+        if (err)
+            console.error(`\rERROR: known ${domain}:`, err);
+        setTimeout(knownLookup, 5000);
+    });
+}
+knownLookup();
+console.log('\nSpawned 1 known lookup thread');

package/package.json ADDED Viewed

@@ -0,0 +1,15 @@
+{
+  "name": "dnssim",
+  "version": "1.0.0",
+  "description": "protestware ware to send randomly genereated dns requests so that maybe att will let me change dns servers on my router",
+  "main": "main.js",
+  "scripts": {
+    "start": "node main.js",
+    "deploy": "until npm start; do echo \"exited with code $?. Restarting...\" > /dev/stderr; sleep 1; done"
+  },
+  "keywords": [
+    "dns"
+  ],
+  "author": "dvtate",
+  "license": "MIT"
+}

package/site_generator.js ADDED Viewed

@@ -0,0 +1,73 @@
+const tldWeights = {
+    com: 100,
+    tk: 2,
+    net: 12,
+    org: 10,
+    info: 6,
+    io: 5,
+    dev: 3,
+    biz: 1,
+    gg: 2,
+    xyz: 4,
+    work: 1,
+    app: 1,
+    ml: 1,
+    ai: 1,
+    us: 1,
+    // 'co.uk': 1,
+    // 'co.jp': 1,
+    tv: 1,
+    club: 1,
+    live: 1,
+    ga: 1,
+    space: 1,
+    online: 1,
+    earth: 1,
+    me: 2,
+    co: 1,
+    to: 1,
+    ca: 1,
+    edu: 2,
+    page: 1,
+    fm: 1,
+    am: 1,
+    eu: 1,
+};
+const tldPicker = [].concat(
+    ...Object.entries(tldWeights)
+        .map(([k, v]) => new Array(v).fill(k)));
+// Note that last char cannot be start or end of domain
+const domainChars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-';
+const prefixes = [
+    'attsux',
+    'not4sale',
+    'goaway',
+    'letmechangedns',
+    'givemedns',
+    'trashrouter',
+];
+function generateDomain(options = {}) {
+    const minLength = options.minLength || 1;
+    const maxLength = options.maxLength || 20;
+    const len = Math.floor(Math.random() * (maxLength - minLength) + minLength);
+    let ret = '';
+    if (Math.random() > 0.5)
+        ret += prefixes[Math.floor(Math.random() * prefixes.length)];
+    ret += domainChars[Math.floor(Math.random() * (domainChars.length - 1))];
+    for (let i = 1; i < len - 1; i++)
+        ret += domainChars[Math.floor(Math.random() * domainChars.length)];
+    ret += domainChars[Math.floor(Math.random() * (domainChars.length - 1))];
+    ret += '.' + tldPicker[Math.floor(Math.random() * tldPicker.length)];
+    return ret;
+}
+module.exports = generateDomain;