Using DNS protocol for information gathering
In this recipe, we will learn to use the various tools/scripts available to gather information regarding your web application domain. DNS stands for Domain Name System and can you with a great deal of information if you are performing black-box testing.
Getting ready
For this recipe, you will an Internet connection.
How to do it...
- We will use for DNS enumeration. To start DNS enumeration, open the terminal and enter the following command:
dnsenum --enum zonetransfer.me
- We should get an output with information such as host, name server(s), e-mail server(s), and if we are lucky, a zone transfer:
- Next, the DNSRecon tool is also available in Kali Linux. DNSRecon is usually the preferred choice over any other tool as it is more reliable, results are properly parsed, and it can be easily imported into other vulnerability assessment and exploitation tools.
- To use DNSRecon, open the terminal and enter the following command:
dnsrecon -d zonetransfer...