ProtonVPN-IPs/entry_ips.py at master · tn3w/ProtonVPN-IPs · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
import json
import socket
import time
import urllib.request
from concurrent.futures import ThreadPoolExecutor, as_completed
from typing import List


TXT_HEADER = """#
# protonvpn_entry_ips.txt
# https://github.com/tn3w/ProtonVPN-IPs/blob/master/protonvpn_entry_ips.txt
#
# An automatically updated list of Entry IPs associated with the
# widely used free and privacy-focused VPN provider, ProtonVPN.
#
# This list could be used to block access to ProtonVPN's services.
#
"""


def get_subdomains_from_crtsh(domain: str) -> List[str]:
    """Get subdomains for a domain from crt.sh using their web API."""
    subdomains = set()
    try:
        with urllib.request.urlopen(
            f"https://crt.sh/json?q={domain}", timeout=60
        ) as response:
            if response.status == 200:
                data = json.loads(response.read().decode("utf-8"))
                for item in data:
                    for name in item.get("name_value", "").split("\n"):
                        if (
                            domain in name
                            and name.endswith(domain)
                            and name != domain
                            and "*" not in name
                        ):
                            subdomains.add(name.strip().lower())
    except Exception as e:
        print(f"Error with crt.sh API: {e}")

    return list(subdomains)


def get_ips_for_hostname(hostname: str) -> List[str]:
    """Get both IPv4 and IPv6 addresses for a hostname."""
    ips = set()

    try:
        for info in socket.getaddrinfo(hostname, None, socket.AF_INET):
            ips.add(info[4][0])
    except (socket.gaierror, socket.herror) as e:
        print(f"IPv4 lookup failed for {hostname}: {e}")

    try:
        for info in socket.getaddrinfo(hostname, None, socket.AF_INET6):
            ips.add(info[4][0])
    except (socket.gaierror, socket.herror) as e:
        print(f"IPv6 lookup failed for {hostname}: {e}")

    return list(ips)


def batch_get_ips_for_hostnames(hostnames: List[str], workers: int = 10) -> List[str]:
    """Get IP addresses for multiple hostnames in parallel."""
    ip_addresses = set()

    with ThreadPoolExecutor(max_workers=workers) as executor:
        futures = {
            executor.submit(get_ips_for_hostname, hostname): hostname
            for hostname in hostnames
        }

        for i, future in enumerate(as_completed(futures)):
            hostname = futures[future]
            try:
                ips = future.result()
                if ips:
                    print(f"Found {len(ips)} IPs for {hostname}")
                    ip_addresses.update(ips)
            except Exception as e:
                print(f"Error processing {hostname}: {e}")

            if (i + 1) % 10 == 0:
                print(f"Progress: {i + 1}/{len(hostnames)} hostnames processed")

    return list(ip_addresses)


def main():
    """Main function to discover subdomains and their IP addresses."""
    print("Starting Entry IP discovery...")
    base_domain = "protonvpn.net"

    subdomains = list()
    for i in range(10):
        subdomains = get_subdomains_from_crtsh(base_domain)
        if subdomains:
            break
        print(f"Attempt {i + 1}/10: No subdomains found from crt.sh API")
        print("Retrying in 30 seconds due to known intermittent issues...")
        time.sleep(30)

    if not subdomains:
        print("Error: No subdomains found. Exiting.")
        return

    with open("protonvpn_subdomains.json", "w", encoding="utf-8") as f:
        json.dump(list(subdomains), f, indent=2)

    print(f"Processing {len(subdomains)} subdomains...")

    ip_addresses = batch_get_ips_for_hostnames(subdomains)
    with open("protonvpn_entry_ips.json", "w", encoding="utf-8") as f:
        json.dump(ip_addresses, f, indent=2)

    with open("protonvpn_entry_ips.txt", "w", encoding="utf-8") as f:
        f.write(TXT_HEADER)
        f.write("\n".join(ip_addresses))

    ipv4_count = sum(1 for ip in ip_addresses if ":" not in ip)
    ipv6_count = sum(1 for ip in ip_addresses if ":" in ip)
    total = len(ip_addresses)

    print("\nSummary:")
    print(f"Total subdomains discovered: {len(subdomains)}")
    print(f"Total unique Entry IPs found: {total}")

    print("\nIP Address Distribution:")
    ipv4_bar = "█" * int(30 * ipv4_count / total)
    ipv6_bar = "█" * int(30 * ipv6_count / total)

    print(f"IPv4 ({ipv4_count}): {ipv4_bar} {ipv4_count/total:.1%}")
    print(f"IPv6 ({ipv6_count}): {ipv6_bar} {ipv6_count/total:.1%}")


if __name__ == "__main__":
    main()