Using DNS protocol for information gathering
In this recipe, we will learn to use the various tools/scripts available to gather information regarding your web application domain. DNS stands for Domain Name System and can provide you with a great deal of information if you are performing black-box testing.
For this recipe, you will require an Internet connection.
- We will use DNSenum for DNS enumeration. To start DNS enumeration, open the terminal and enter the following command:
dnsenum --enum zonetransfer.me
- We should get an output with information such as host, name server(s), e-mail server(s), and if we are lucky, a zone transfer:
- Next, the DNSRecon tool is also available in Kali Linux. DNSRecon is usually the preferred ...