Kali linux試用:dnsenum

7897 ワード

dnsenumの目的は、グーグルや辞書を通じて存在する可能性のあるドメイン名を推測し、ネットワークセグメントを逆方向に検索することができるドメインの情報をできるだけ収集することです.それはウェブサイトのホストアドレス情報、ドメイン名サーバー、mx record(手紙交換記録)を照会することができて、ドメイン名サーバーの上でaxfr要求を実行して、googleスクリプトを通じて拡張ドメイン名情報(google hacking)を得て、ドメイン名から抽出して照会して、C類の住所を計算してwhoisの問い合わせを実行して、逆方向の照会を実行して、アドレスのセグメントをファイルに書きます.
wooyunはsinaappに構築されています
root@kali:~/Desktop/crypt# dnsenum --enum www.wooyun.org

dnsenum.pl VERSION:1.2.2

Warning: can't load Net::Whois::IP module, whois queries disabled.

-----   www.wooyun.org   -----

Host's addresses:

__________________



wooyun.sinaapp.com                       30       IN    A        220.181.136.35

wooyun.sinaapp.com                       30       IN    A        220.181.136.36





Name Servers:

______________



 Error: can't continue no NS record for www.wooyun.org

情報収集に非常に役立ちます
root@kali:~/Desktop# dnsenum --enum 51cto.com
dnsenum.pl VERSION:1.2.2
Warning: can't load Net::Whois::IP module, whois queries disabled.

-----   51cto.com   -----


Host's addresses:
__________________

51cto.com                                600      IN    A        118.144.78.52
51cto.com                                600      IN    A        118.144.78.54


Name Servers:
______________

ns1.dnsv2.com                            87409    IN    A        122.225.217.193
ns1.dnsv2.com                            87409    IN    A        183.60.59.230
ns1.dnsv2.com                            87409    IN    A        221.204.186.8
ns2.dnsv2.com                            87409    IN    A        119.167.195.7
ns2.dnsv2.com                            87409    IN    A        180.153.162.151
ns2.dnsv2.com                            87409    IN    A        112.90.143.34


Mail (MX) Servers:
___________________


root@kali:~/Desktop# dnsenum --enum  cnblogs.com

dnsenum.pl VERSION:1.2.2

Warning: can't load Net::Whois::IP module, whois queries disabled.



-----   cnblogs.com   -----





Host's addresses:

__________________



cnblogs.com                              584      IN    A        42.121.252.58





Name Servers:

______________



ns4.dnsv3.com                            64817    IN    A        115.236.151.139

ns4.dnsv3.com                            64817    IN    A        180.153.162.152

ns4.dnsv3.com                            64817    IN    A        221.204.186.9

ns3.dnsv3.com                            64817    IN    A        183.60.59.231

ns3.dnsv3.com                            64817    IN    A        112.90.143.35

ns3.dnsv3.com                            64817    IN    A        119.167.195.10





Mail (MX) Servers:

___________________



alt2.aspmx.l.google.com                  278      IN    A        74.125.137.26

aspmx5.googlemail.com                    278      IN    A        173.194.75.26

aspmx2.googlemail.com                    278      IN    A        74.125.142.26

aspmx.l.google.com                       278      IN    A        74.125.129.26

alt1.aspmx.l.google.com                  278      IN    A        74.125.142.26

aspmx3.googlemail.com                    278      IN    A        74.125.137.26

aspmx4.googlemail.com                    278      IN    A        173.194.68.26





Trying Zone Transfers and getting Bind Versions:

_________________________________________________







Trying Zone Transfer for cnblogs.com on ns4.dnsv3.com ... 

AXFR record query failed: query timed out

Unable to obtain Server Version for ns4.dnsv3.com : query timed out

Trying Zone Transfer for cnblogs.com on ns3.dnsv3.com ... 

AXFR record query failed: query timed out

Unable to obtain Server Version for ns3.dnsv3.com : query timed out

 Wildcards detected, all subdomains will point to the same IP address, bye.

fierce-dnsクエリー
root@kali:~/Desktop# fierce -dns 51cto.com

DNS Servers for 51cto.com:

    ns1.dnsv2.com

    ns2.dnsv2.com



Trying zone transfer first...

    Testing ns1.dnsv2.com

        Request timed out or transfer not allowed.

    Testing ns2.dnsv2.com

        Request timed out or transfer not allowed.