VulnCheckのIPインテリジェンスProtective DNS (PDNS) APIは、Command and Control (C2)や攻撃者のインフラをブロックするために、VulnCheckのようなサードパーティのデナイリストを活用するProtective DNSサービスなど、さまざまな方法で使用できます。
curl --request GET \
--url https://api.vulncheck.com/v3/pdns/vulncheck-c2 \
--header 'Accept: application/json' \
--header 'Authorization: Bearer insert_token_here'
package main
import (
"context"
"fmt"
"log"
"os"
vulncheck "github.com/vulncheck-oss/sdk-go-v2/v2"
)
func main() {
configuration := vulncheck.NewConfiguration()
configuration.Scheme = "https"
configuration.Host = "api.vulncheck.com"
client := vulncheck.NewAPIClient(configuration)
token := os.Getenv("VULNCHECK_API_TOKEN")
auth := context.WithValue(
context.Background(),
vulncheck.ContextAPIKeys,
map[string]vulncheck.APIKey{
"Bearer": {Key: token},
},
)
resp, httpRes, err := client.EndpointsAPI.PdnsVulncheckC2Get(auth).Execute()
if err != nil || httpRes.StatusCode != 200 {
log.Fatal(err)
}
fmt.Printf("%+v", resp)
}
import vulncheck_sdk
configuration = vulncheck_sdk.Configuration(host="https://api.vulncheck.com/v3")
configuration.api_key["Bearer"] = "insert_token_here"
with vulncheck_sdk.ApiClient(configuration) as api_client:
endpoints_client = vulncheck_sdk.EndpointsApi(api_client)
api_response = endpoints_client.pdns_vulncheck_c2_get()
print(api_response)
vulncheck pdns vulncheck-c2
0-64-187-224-133.quickpacket.com
014198194219.ctinets.com
014199160130.ctinets.com
019-128-100-005.ip-addr.inexio.net
020116.vps-10.com
037008238050.gubin.vectranet.pl
056.168.151.89.chtts.ru
058177115124.ctinets.com
058177167198.ctinets.com
058177174111.ctinets.com
...
curl --request GET \
--url https://api.vulncheck.com/v3/pdns/vulncheck-c2?format=json \
--header 'Accept: application/json' \
--header 'Authorization: Bearer insert_token_here'
package main
import (
"fmt"
"io"
"net/http"
)
func main() {
request, _ := http.NewRequest("GET", "https://api.vulncheck.com/v3/pdns/vulncheck-c2?format=json", nil)
request.Header.Set("Accept", "application/json")
request.Header.Set("Authorization", "Bearer insert_token_here")
response, _ := http.DefaultClient.Do(request)
defer response.Body.Close()
bodyBytes, _ := io.ReadAll(response.Body)
fmt.Println(string(bodyBytes))
}
import requests
url = "https://api.vulncheck.com/v3/pdns/vulncheck-c2?format=json"
headers = {
"accept": "application/json"
}
cookies = {
"token": "insert_token_here"
}
response = requests.get(url, headers=headers, cookies=cookies)
print(response.json())
vulncheck pdns vulncheck-c2 --json