Kali system -- dnsmap for DNS collection and analysis

1>dnsmap Come of 2006 year , It is by a person called “The Thief No One Saw” Inspired by the short story of , This little story can be found in Paul Craig The book of 《Stealing the Network - How to Own the Bow》 Find .

dnsmap It is mainly used to help test the security of the network infrastructure during the information collection phase of penetration testing , It can find the target network segment , domain name , Even phone numbers and so on .

Subdomain name exhaustion is also a new technology in enumerating subdomains , Especially when the domain transfer technology fails .（ Recently, I have rarely seen examples of publicly allowing domain transfers )

Tool source ：http://code.google.com/p/dnsmap/

2> install

Download it and put it in kali On the system

3> Usage method ：
-w Manually specify the dictionary
-r Save as regular file
-c Save as csv The file of
-d Show millisecs
-i Ignore intrusion prevention systems

Because of the firewall , This is an exhaustive failure ： The specific usage is like that , Know that you can

dnsmap target-domain.foo
dnsmap target-domain.foo -w yourwordlist.txt -r /tmp/domainbf_results.txt
dnsmap target-fomain.foo -r /tmp/ -d 3000
dnsmap target-fomain.foo -r ./domainbf_results.txt