mcp-dnstwist

#!/usr/bin/env node import { Server } from '@modelcontextprotocol/sdk/server/index.js'; import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js'; import { CallToolRequestSchema, ErrorCode, ListToolsRequestSchema, McpError, } from '@modelcontextprotocol/sdk/types.js'; import { exec } from 'child_process'; import { promisify } from 'util'; const execAsync = promisify(exec); const DOCKER_IMAGE = 'elceef/dnstwist'; interface DnstwistResult { banner_http?: string; dns_a?: string[]; dns_aaaa?: string[]; dns_mx?: string[]; dns_ns?: string[]; domain: string; fuzzer: string; whois_created?: string; whois_registrar?: string; } interface FuzzDomainArgs { domain: string; nameservers?: string; threads?: number; format?: 'json' | 'csv' | 'list'; registered_only?: boolean; mxcheck?: boolean; ssdeep?: boolean; banners?: boolean; } function isFuzzDomainArgs(args: unknown): args is FuzzDomainArgs { if (!args || typeof args !== 'object') return false; const a = args as Record<string, unknown>; return typeof a.domain === 'string' && (a.nameservers === undefined || typeof a.nameservers === 'string') && (a.threads === undefined || typeof a.threads === 'number') && (a.format === undefined || ['json', 'csv', 'list'].includes(a.format as string)) && (a.registered_only === undefined || typeof a.registered_only === 'boolean') && (a.mxcheck === undefined || typeof a.mxcheck === 'boolean') && (a.ssdeep === undefined || typeof a.ssdeep === 'boolean') && (a.banners === undefined || typeof a.banners === 'boolean'); } class DnstwistServer { private server: Server; constructor() { this.server = new Server({ name: 'dnstwist-server', version: '0.1.0', capabilities: { tools: {} } }); this.setupToolHandlers(); this.server.onerror = (error) => console.error('[MCP Error]', error); process.on('SIGINT', async () => { await this.server.close(); process.exit(0); }); // Trigger setup immediately this.ensureSetup().catch(error => { console.error('Failed to setup dnstwist:', error); process.exit(1); }); } private async execCommand(command: string): Promise<{ stdout: string; stderr: string }> { console.error('Executing command:', command); try { const result = await execAsync(command, { maxBuffer: 10 * 1024 * 1024 }); console.error('Command output:', result.stdout); if (result.stderr) console.error('Command stderr:', result.stderr); return result; } catch (error) { console.error('Command failed:', error); throw error; } } private async ensureSetup(): Promise<void> { try { console.error('Checking Docker...'); try { await this.execCommand('docker --version'); } catch (error) { throw new Error('Docker is not installed or not running. Please install Docker and try again.'); } console.error('Checking if dnstwist image exists...'); try { await this.execCommand(`docker image inspect ${DOCKER_IMAGE}`); console.error('Dnstwist image found'); } catch (error) { console.error('Dnstwist image not found, pulling...'); await this.execCommand(`docker pull ${DOCKER_IMAGE}`); console.error('Dnstwist image pulled successfully'); } } catch (error) { console.error('Setup failed:', error); throw error; } } private setupToolHandlers() { this.server.setRequestHandler(ListToolsRequestSchema, async () => ({ tools: [ { name: 'fuzz_domain', description: 'Generate and analyze domain permutations to detect potential typosquatting, phishing, and brand impersonation', inputSchema: { type: 'object', properties: { domain: { type: 'string', description: 'Domain name to analyze (e.g., example.com)' }, nameservers: { type: 'string', description: 'Comma-separated list of DNS servers to use (default: 1.1.1.1)', default: '1.1.1.1' }, threads: { type: 'number', description: 'Number of threads to use for parallel processing', minimum: 1, maximum: 100, default: 50 }, format: { type: 'string', enum: ['json', 'csv', 'list'], description: 'Output format', default: 'json' }, registered_only: { type: 'boolean', description: 'Show only registered domain permutations', default: true }, mxcheck: { type: 'boolean', description: 'Check for MX records', default: true }, ssdeep: { type: 'boolean', description: 'Generate fuzzy hashes of web pages to detect phishing', default: false }, banners: { type: 'boolean', description: 'Capture HTTP banner information', default: true } }, required: ['domain'] } } ] })); this.server.setRequestHandler(CallToolRequestSchema, async (request) => { try { await this.ensureSetup(); if (request.params.name !== 'fuzz_domain') { throw new McpError( ErrorCode.MethodNotFound, `Unknown tool: ${request.params.name}` ); } if (!isFuzzDomainArgs(request.params.arguments)) { throw new McpError( ErrorCode.InvalidParams, 'Invalid arguments for fuzz_domain' ); } const { domain, nameservers = '1.1.1.1', threads = 50, format = 'json', registered_only = true, mxcheck = true, ssdeep = false, banners = true } = request.params.arguments; // Build command arguments const args = [ domain, '--format', format ]; if (registered_only) args.push('--registered'); if (nameservers) args.push('--nameservers', nameservers); if (threads) args.push('-t', threads.toString()); if (mxcheck) args.push('--mxcheck'); if (ssdeep) args.push('--ssdeep'); if (banners) args.push('-b'); // Run dnstwist in Docker const { stdout, stderr } = await this.execCommand( `docker run --rm ${DOCKER_IMAGE} ${args.join(' ')}` ); let results: DnstwistResult[]; try { results = JSON.parse(stdout); } catch (error) { throw new Error(`Failed to parse dnstwist output: ${error}`); } return { content: [ { type: 'text', text: JSON.stringify(results, null, 2) } ] }; } catch (error) { const errorMessage = error instanceof Error ? error.message : String(error); return { content: [ { type: 'text', text: `Error executing dnstwist: ${errorMessage}` } ], isError: true }; } }); } async run() { const transport = new StdioServerTransport(); await this.server.connect(transport); console.error('Dnstwist MCP server running on stdio'); } } const server = new DnstwistServer(); server.run().catch(console.error);