feat: set public: false for route53 records when they are in private …

…zone currently all records are marked as public and it's impossible to differentiate between private and public zones
projectdiscovery · Aug 10, 2023 · 03e94b7 · 03e94b7
1 parent c0c3aaf
commit 03e94b7
Showing 1 changed file with 6 additions and 5 deletions.
diff --git a/pkg/providers/aws/route53.go b/pkg/providers/aws/route53.go
@@ -29,7 +29,7 @@ func (d *route53Provider) GetResource(ctx context.Context) (*schema.Resources, e
 			return nil, errors.Wrap(err, "could not list hosted zones")
 		}
 		for _, zone := range zoneOutput.HostedZones {
-			items, err := d.listResourceRecords(*zone.Id)
+			items, err := d.listResourceRecords(zone)
 			if err != nil {
 				return nil, errors.Wrap(err, "could not list hosted zones records")
 			}
@@ -44,8 +44,9 @@ func (d *route53Provider) GetResource(ctx context.Context) (*schema.Resources, e
 }
 
 // listResourceRecords lists the resource records for a hosted route53 zone.
-func (d *route53Provider) listResourceRecords(zone string) (*schema.Resources, error) {
-	req := &route53.ListResourceRecordSetsInput{HostedZoneId: aws.String(zone)}
+func (d *route53Provider) listResourceRecords(zone *route53.HostedZone) (*schema.Resources, error) {
+	public := !*zone.Config.PrivateZone
+	req := &route53.ListResourceRecordSetsInput{HostedZoneId: aws.String(*zone.Id)}
 	list := schema.NewResources()
 
 	for {
@@ -65,13 +66,13 @@ func (d *route53Provider) listResourceRecords(zone string) (*schema.Resources, e
 			}
 			list.Append(&schema.Resource{
 				ID:       d.id,
-				Public:   true,
+				Public:   public,
 				DNSName:  name,
 				Provider: providerName,
 			})
 			list.Append(&schema.Resource{
 				ID:         d.id,
-				Public:     true,
+				Public:     public,
 				PublicIPv4: ip4,
 				Provider:   providerName,
 			})