DNS

We will show how we can manually and with tools gather DNS information about an target network and use it to give us an inside how the network works.

Tools

host

host www.megacorpone.com
host -t txt www.megacorpone.com

Base One-Liner for Host Enumeration

for ip in $(cat list.txt); do host $ip.megacorpone.com; done

dnsrecon

dnsrecon -d megacorpone.com -t std
dnsrecon -d <domain> -D ~/list.txt -t brt

dnsenum

dnsenum megacorpone.com

nslookup

nslookup -type=TXT lab.htb <dns-server>

Websites

LogoDNSDumpster - Find & lookup dns records for recon & researchDNSDumpster.com
PreviousFTPNextSMB

Last updated