03 March 2012

BackTrack tool review: dnsmap

Note: This is part of a series on BackTrack 5 tool reviews. It is not meant to be an exhaustive analysis of any tool, just a demonstration of the tool using real-world targets.


root@bt:/pentest/enumeration/dns/dnsmap# ./dnsmap
dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)


usage: dnsmap [options]
options:
-w [wordlist-file]
-r [regular-results-file]
-c [csv-results-file]
-d [delay-millisecs]
-i [ips-to-ignore] (useful if you're obtaining false positives)


e.g.:
dnsmap target-domain.foo
dnsmap target-domain.foo -w yourwordlist.txt -r /tmp/domainbf_results.txt
dnsmap target-fomain.foo -r /tmp/ -d 3000
dnsmap target-fomain.foo -r ./domainbf_results.txt



root@bt:/pentest/enumeration/dns/dnsmap# ./dnsmap un.org -w dns.txt
dnsmap 0.30 - DNS Network Mapper by pagvac (gnucitizen.org)

[+] searching (sub)domains for un.org using dns.txt
[+] using maximum random delay of 10 millisecond(s) between requests

extranet.un.org
IP address #1: 157.150.164.23

ftp.un.org
IP address #1: 157.150.185.73
IP address #2: 157.150.34.31

intranet.un.org
IP address #1: 157.150.196.1

jobs.un.org
IP address #1: 157.150.195.69

lists.un.org
IP address #1: 157.150.185.202
IP address #2: 157.150.34.65
IP address #3: 157.150.34.66
IP address #4: 157.150.185.201

mx1.un.org
IP address #1: 157.150.197.100

mx11.un.org
IP address #1: 157.150.184.101

mx3.un.org
IP address #1: 157.150.197.60

ns1.un.org
IP address #1: 157.150.185.28

ns2.un.org
IP address #1: 157.150.34.57

ntp.un.org
IP address #1: 157.150.195.33

search.un.org
IP address #1: 157.150.34.32
IP address #2: 157.150.185.49

shop.un.org
IP address #1: 157.150.195.92

treasury.un.org
IP address #1: 157.150.185.69

webmail.un.org
IP address #1: 157.150.185.55
IP address #2: 157.150.34.43

www.un.org
IP address #1: 157.150.185.49
IP address #2: 157.150.34.32

www2.un.org
IP address #1: 157.150.195.9

[+] 17 (sub)domains and 24 IP address(es) found
[+] completion time: 457 second(s)

Post a Comment