Dnstracer : dnstracer is a pen testing tool used for tracing a chain of DNS servers to the source
How Does DNStracer work ?
- It sends the specified name-server a non-recursive request for the name.
- Non-recursive means: if the name-server knows it, it will return the data requested. If the name-server doesn't know it, it will return pointers to name-servers that are authoritive for the domain part in the name or it will return the addresses of the root name-servers.
- If the name server does returns an authoritative answer for the name, the next server is queried. If it returns an non-authoritative answer for the name, the name servers in the authority records will be queried.
- The program stops if all name-servers are queried. Make sure the server you're querying doesn't do forwarding towards other servers, as dnstracer is not able to detect this for you. It detects so called lame servers, which are name-servers which has been told to have information about a certain domain, but don't have this information.
Syntax : dnstracer [options] [host]
dnstracer in verbose mode
No comments:
Post a Comment