☀️ 🌙
← Back to Home

Experimental DNS Features Professional+

Advanced DNS analysis including ECS, Encrypted DNS, and DGA Detection

Overview

Experimental DNS features provide cutting-edge analysis capabilities for DNS security researchers and enterprise security teams. These features require a Professional tier subscription ($99/month) or higher.

1. ECS (EDNS Client Subnet) Analysis

Analyze how CDNs and DNS providers handle geolocation-based responses.

POST /api/v2/experimental/ecs/analyze

Request

curl -X POST "https://www.dnsscience.io/api/v2/experimental/ecs/analyze" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: YOUR_API_KEY" \
  -d '{
    "domain": "cdn.example.com",
    "client_subnets": ["8.8.8.0/24", "1.1.1.0/24"]
  }'

Response

{
  "domain": "cdn.example.com",
  "ecs_support": true,
  "results": [
    {
      "client_subnet": "8.8.8.0/24",
      "response_ips": ["192.0.2.1"],
      "scope_prefix": 24
    }
  ]
}

2. Encrypted DNS Detection

Check domain support for DoH (DNS over HTTPS), DoT (DNS over TLS), and DoQ (DNS over QUIC).

GET /api/v2/experimental/encrypted-dns/check?domain={domain}

Example

curl "https://www.dnsscience.io/api/v2/experimental/encrypted-dns/check?domain=cloudflare.com" \
  -H "X-API-Key: YOUR_API_KEY"

Response

{
  "domain": "cloudflare.com",
  "doh": {
    "supported": true,
    "endpoint": "https://cloudflare-dns.com/dns-query"
  },
  "dot": {
    "supported": true,
    "port": 853
  },
  "doq": {
    "supported": true,
    "port": 8853
  }
}

3. DGA (Domain Generation Algorithm) Detection

ML-powered detection of algorithmically generated domains used by malware.

POST /api/v2/experimental/dga/check

Request

curl -X POST "https://www.dnsscience.io/api/v2/experimental/dga/check" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: YOUR_API_KEY" \
  -d '{
    "domains": ["xyzabc123def.com", "google.com"]
  }'

Response

{
  "results": [
    {
      "domain": "xyzabc123def.com",
      "is_dga": true,
      "confidence": 0.92,
      "family": "unknown"
    },
    {
      "domain": "google.com",
      "is_dga": false,
      "confidence": 0.98
    }
  ]
}

4. DNSSEC Chain Validation

Complete DNSSEC trust chain analysis.

GET /api/v2/experimental/dnssec/chain?domain={domain}

5. DNS Rebinding Detection

Detect potential DNS rebinding attacks.

GET /api/v2/experimental/rebinding/check?domain={domain}

API Endpoints Summary

Method Endpoint Description
POST /api/v2/experimental/ecs/analyze Analyze ECS responses
GET /api/v2/experimental/encrypted-dns/check Check encrypted DNS support
POST /api/v2/experimental/dga/check DGA detection
GET /api/v2/experimental/dnssec/chain DNSSEC chain validation
GET /api/v2/experimental/rebinding/check DNS rebinding detection

Rate Limits

Tier Requests/Hour
Professional 1,000
Commercial 5,000
Enterprise Unlimited