DNS

Delivers various actions related to DNS.

Integration with LogicHub

Connecting with DNS

To connect to DNS following details are required:

Actions with DNS

Dig

Dig is a network administration command-line tool for querying Domain Name System (DNS) servers.

Inputs to this Action

  • Connections: Choose a connection that you have created.
  • Column Name: Select the name of the column from parent table to lookup value for.

Output of Action
JSON containing the following items:

  • result: The suspicious activity of the IP address.
{
  "ip": [
    "162.210.196.173"
  ],
  "record_list": [
    "A"
  ],
  "query": "ad.getfond.info"
}

NS Lookup

Query the nameserver for the IP address of the given HOST optionally using a specified DNS server.

Inputs to this Action

  • Connections: Choose a connection that you have created.
  • Column Name: Select the name of the column from parent table to lookup value for.

Output of Action
JSON containing the following items:

{
  "lookup": "125.227.70.80",
  "dns_address": "125-227-70-80.HINET-IP.hinet.net"
}

Whois

A tool for querying databases that store the registered users or assignees of an Internet resource, such as a domain name, an IP address block, or an autonomous system.

Inputs to this Action

  • Connections: Choose a connection that you have created.
  • Column Name: Select the name of the column from parent table to lookup value for.

Output of Action
JSON containing the following items:

{
  "start_ip": "['223.72.0.0', '223.64.0.0']",
  "end_ip": "['223.72.0.0', '223.117.255.255']",
  "data": {
    "nir": null,
    "asn_registry": "apnic",
    "asn": "56048",
    "asn_cidr": "223.72.0.0/16",
    "asn_country_code": "CN",
    "asn_date": "2010-07-01",
    "asn_description": "CMNET-BEIJING-AP China Mobile Communicaitons Corporation, CN",
    "query": "223.72.63.57",
    "network": {
      "handle": "223.64.0.0 - 223.117.255.255",
      "status": null,
      "remarks": [
        {
          "title": "description",
          "description": "China Mobile Communications Corporation\nMobile Communications Network Operator in China\nInternet Service Provider in China",
          "links": null
        },
        {
          "title": "remarks",
          "description": "service provider\n--------------------------------------------------------\nTo report network abuse, please contact mnt-irt\nFor troubleshooting, please contact tech-c and admin-c\nReport invalid contact via www.apnic.net/invalidcontact\n--------------------------------------------------------",
          "links": null
        }
      ],
      "notices": [
        {
          "title": "Source",
          "description": "Objects returned came from source\nAPNIC",
          "links": null
        },
        {
          "title": "Terms and Conditions",
          "description": "This is the APNIC WHOIS Database query service. The objects are in RDAP format.",
          "links": [
            "http://www.apnic.net/db/dbcopyright.html"
          ]
        }
      ],
      "links": [
        "http://rdap.apnic.net/ip/223.64.0.0/10"
      ],
      "events": [
        {
          "action": "last changed",
          "timestamp": "2020-07-15T13:10:01Z",
          "actor": null
        }
      ],
      "raw": null,
      "start_address": "223.64.0.0",
      "end_address": "223.117.255.255",
      "cidr": "223.64.0.0/11, 223.96.0.0/12, 223.112.0.0/14, 223.116.0.0/15",
      "ip_version": "v4",
      "type": "ALLOCATED PORTABLE",
      "name": "CMNET",
      "country": "CN",
      "parent_handle": null
    },
    "entities": [
      "IRT-CHINAMOBILE-CN",
      "HL1318-AP"
    ],
    "objects": {
      "IRT-CHINAMOBILE-CN": {
        "handle": "IRT-CHINAMOBILE-CN",
        "status": null,
        "remarks": [
          {
            "title": "remarks",
            "description": "[email protected] was validated on 2020-07-16",
            "links": null
          }
        ],
        "notices": null,
        "links": [
          "http://rdap.apnic.net/entity/IRT-CHINAMOBILE-CN"
        ],
        "events": [
          {
            "action": "last changed",
            "timestamp": "2020-07-16T05:55:01Z",
            "actor": null
          }
        ],
        "raw": null,
        "roles": [
          "abuse"
        ],
        "contact": {
          "name": "IRT-CHINAMOBILE-CN",
          "kind": "group",
          "address": [
            {
              "type": null,
              "value": "China Mobile Communications Corporation\n29, Jinrong Ave., Xicheng District, Beijing, 100032"
            }
          ],
          "phone": null,
          "email": [
            {
              "type": null,
              "value": "[email protected]"
            },
            {
              "type": null,
              "value": "[email protected]"
            }
          ],
          "role": null,
          "title": null
        },
        "events_actor": null,
        "entities": null
      },
      "HL1318-AP": {
        "handle": "HL1318-AP",
        "status": null,
        "remarks": null,
        "notices": null,
        "links": [
          "http://rdap.apnic.net/entity/HL1318-AP"
        ],
        "events": [
          {
            "action": "last changed",
            "timestamp": "2016-11-29T09:38:38Z",
            "actor": null
          }
        ],
        "raw": null,
        "roles": [
          "technical",
          "administrative"
        ],
        "contact": {
          "name": "haijun li",
          "kind": "individual",
          "address": [
            {
              "type": null,
              "value": "29,Jinrong Ave, Xicheng district,beijing,100032"
            }
          ],
          "phone": [
            {
              "type": "voice",
              "value": "+86 1052686688"
            },
            {
              "type": "fax",
              "value": "+86 10 52616187"
            }
          ],
          "email": [
            {
              "type": null,
              "value": "[email protected]"
            },
            {
              "type": null,
              "value": "[email protected]"
            }
          ],
          "role": null,
          "title": null
        },
        "events_actor": null,
        "entities": null
      }
    },
    "raw": null
  },
  "ipaddress": "223.72.63.57"
}

Did this page help you?