Dnsmap: dnsmap is also a dns enumeration tool , It is basically used By Pen-testers to gather the Information about the target .
Features of Dnsmap:
- obtain all IP addresses (A records) associated to each successfully bruteforced subdomain, rather than just one IP address per subdomain
- abort the bruteforcing process in case the target domain uses wildcards
- ability to be able to run the tool without providing a wordlist by using a built-in list of keywords
- bruteforcing by using a user-supplied wordlist (as opposed to the built-in wordlist)
- saving the results in human-readable and CSV format for easy processing
- improved built-in subdomains wordlist
- new bash script (dnsmap-bulk.sh) included which allows running dnsmap against a list of domains from a user-supplied file. i.e.: bruteforcing several domains in a bulk fashion
- bypassing of signature-based dnsmap detection by generating a proper pseudo-random subdomain when checking for wildcards
For the DNSmap in Backtrack 5 go to the following steps :
Applications>Backtrack>Information Gathering>Network Analysis>DNS analysis>dnsmap
Syntax : ./dnsmap <target-domain> [options]
No comments:
Post a Comment