Add Go domain-posture CLI with concurrent DNS/security reconnaissance

Author: FoxSecIntel

README.md

@@ -81,6 +81,7 @@ Use this to evaluate whether a domain is truly fronted by Cloudflare and identif
 | `cloudflare-detector.py` | Cloudflare signal analysis and origin exposure hints | CDN/WAF bypass investigations |
 | `domain_security_report.py` | Aggregated reporting workflows | Scheduled reporting and analyst summaries |
 | `qa_check.sh` | Local quality checks for repo scripts | Safe pre-commit validation |
+| `tools/domain-posture-go/domain-posture` | Multi-threaded DNS and TLS posture reconnaissance with headers, redirect, cert expiry, security.txt, and WHOIS age | Batch triage and JSON pipeline ingestion |
 
 ---
 

tools/domain-posture-go/README.md

@@ -0,0 +1,46 @@
+# domain-posture (Go)
+
+`domain-posture` performs multi-threaded DNS and security posture reconnaissance for one or more domains.
+
+## Features
+
+- Single-domain mode (`--domain`)
+- File input mode (`--file`, newline-delimited)
+- Worker pool concurrency (`--concurrency`, default `10`)
+- Per-domain timeout protection (8 seconds)
+- DNS resolution (`A` and `AAAA`)
+- HTTPS reachability and redirect target capture
+- `/.well-known/security.txt` status check
+- Security header capture:
+  - `Strict-Transport-Security`
+  - `Content-Security-Policy`
+  - `X-Frame-Options`
+- TLS certificate expiry and days remaining
+- WHOIS creation date extraction and domain age (days)
+- Human-readable table output (default)
+- JSON output (`--json`)
+
+## Build
+
+```bash
+cd tools/domain-posture-go
+./build.sh
+```
+
+## Usage
+
+```bash
+# Single domain
+./domain-posture --domain example.com
+
+# Batch from file
+./domain-posture --file domains.txt --concurrency 20
+
+# JSON output
+./domain-posture --file domains.txt --json
+```
+
+## Notes
+
+- WHOIS parsing can vary by registrar format. When date parsing fails, the error is reported in the row without stopping the whole batch.
+- Output errors are per-domain and non-fatal to the overall run.

tools/domain-posture-go/build.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+cd "$(dirname "$0")"
+
+echo "Building domain-posture for Linux amd64"
+GOOS=linux GOARCH=amd64 go build -o domain-posture main.go
+
+echo "Building domain-posture.exe for Windows amd64"
+GOOS=windows GOARCH=amd64 go build -o domain-posture.exe main.go
+
+echo "Done"

tools/domain-posture-go/go.mod

@@ -0,0 +1,7 @@
+module domain-posture-go
+
+go 1.22
+
+require github.com/likexian/whois v1.15.6
+
+require golang.org/x/net v0.35.0 // indirect

tools/domain-posture-go/go.sum

@@ -0,0 +1,6 @@
+github.com/likexian/gokit v0.25.15 h1:QjospM1eXhdMMHwZRpMKKAHY/Wig9wgcREmLtf9NslY=
+github.com/likexian/gokit v0.25.15/go.mod h1:S2QisdsxLEHWeD/XI0QMVeggp+jbxYqUxMvSBil7MRg=
+github.com/likexian/whois v1.15.6 h1:hizngFHJTNQDlhwhU+FEGyPGxy8bRnf25gHDNrSB4Ag=
+github.com/likexian/whois v1.15.6/go.mod h1:vx3kt3sZ4mx4XFgpaNp3GXQCZQIzAoyrUAkRtJwoM2I=
+golang.org/x/net v0.35.0 h1:T5GQRQb2y08kTAByq9L4/bz8cipCdA8FbRTXewonqY8=
+golang.org/x/net v0.35.0/go.mod h1:EglIi67kWsHKlRzzVMUD93VMSWGFOMSZgxFjparz1Qk=