logoalt Hacker News

malwrartoday at 1:26 PM1 replyview on HN

They log all DNS requests made to their public resolver in a searchable internal database, at least when I worked there a decade or so ago. I wonder if they seed their crawler with it?


Replies

Analemma_today at 1:32 PM

DNS servers never see subpaths you request, only the domain itself, so that wouldn’t help with a hidden path. But there are lots of other ways to get it: caches/CDNs can leak paths, Chrome presumably sends Google a bunch of request details, and so on.

It’s a different story if it’s a subdomain though, OP wasn’t clear.