LSWSec - Offensive

CtrlK

Introduction
File transfer
- Transferring Files
  - Transferring Files - Linux
  - Transferring Files - Windows
Recon
Ports
Web
Priv-esc
- Windows
  - mimikatz
Pivoting
Command and Control
- powershell empire
- Armitage
Active Directory

Powered by GitBook

On this page

Recon
Passive information Gathering
Finding SubDomains

DNS Zone Transfer

DNS Zone Transfers allow an attacker to query all records from a DNS server. It may bring back information about elements which are accessible from the internet but wouldn't come back from a google search. This will give the attacker alot of knowlege which can help them conduct a successful attack.

To find out the name servers of a domain use:

host -t ns domain.com

To query the DNS server

dig axfr @nameserver domain.com

Zonetransfer.medigininja

PreviousDNS NextSubdomain Enumeration

Last updated 2 years ago