DNSwitness
Description
DNSwitness is a AFNIC scientific
program to gather information from the DNS. It has two main software
components:
- DNSdelve, for active
measurement, by asking explicit questions to the DNS name servers,
questions related to the content of the zone (which therefore
cannot be deduced from the database of the registry). It
allows to answer questions such as "How many domains have at least an
IPv6 Web server?" or "How many domains have
enabled SPF?"
- DNSmezzo, for passive
measurement, by sniffing the DNS queries and responses exchanged with
name servers. It allows to answer questions like "What are the top N
domains requested which yield a NXDOMAIN answer?" or "How many
queries use EDNS0 and for which sizes?".
DNSwitness's components are optimized for periodic, unattended runs, for instance
from a cron job. Results are typicallly stored in a database, most of
the time a rDBMS, to allow long-term surveys.
Licence: GPL See the COPYING file. Source code available at GitHub. DNSwitness has been
developed at AFNIC, mostly by
Stéphane Bortzmeyer and Nicolas Delvaux.