30 декабря 2018 в Information Gathering

Описание пакета dnswalk

dnswalk является отладчиком DNS. Он выполняет передачу зон указанных доменов и проверяет базу данных различными способами на внутреннюю согласованность и точность.

Инструменты, включенные в пакет dnswalk

dnswalk - проверяет информацию о зоне DNS с помощью поиска на сервере имен

root@kali:~# dnswalk --help
      Usage: dnswalk [-OPTIONS [-MORE_OPTIONS]] [--] [PROGRAM_ARG1 ...]
      The following single-character options are accepted:
      With arguments: -D
      Boolean (without arguments): -r -f -i -a -d -m -F -l
      Options may be merged together. -- stops processing of options.
      Space is not required between options and their arguments.
      [Now continuing due to backward compatibility and excessive paranoia.
      See ``perldoc Getopt::Std'' about $Getopt::Std::STANDARD_HELP_VERSION.]
      Usage: dnswalk domain
      domain MUST end with a '.'

Опции dnswalk

-r     Recursively descend sub-domains of the specified domain.
      -a     Turn on warning of duplicate A records.
      -d     Print debugging and 'status' information to stderr.  (Use only if redirecting stdout).
      -m     Perform checks only if the zone has been modified since the previous run.
      -F     Perform  "fascist"  checking.  When checking an A record, compare the PTR name for each IP address with the forward name and report mismatches.
      -i     Suppress check for invalid characters in a domain name.
      -l     Perform  "lame  delegation"  checking.   For every NS record, check to see that the listed host is  indeed returning authoritative answers for this domain.

Пример использования dnswalk

Попытайтесь получить информацию о зоне DNS из целевого домена (example.com.):

root@kali:~# dnswalk example.com.
      Checking example.com.
root@kali:~# dnswalk -r -d example.com.
      Checking example.com.