Info BackTrack

Linux & Security Tutorial

Information Gathering Menggunakan Dnstracer – Target enumeration


Dnstracer sih sebenarnya bukan sesuatu hal yang baru setelah saya baca-baca di indobacktrack.or.id tentang penggunaannya. Tapi it’s okelah, dibahas aja sedikit.

--Kemampuan Dnstracer yaitu untuk  mendapatkan informasi Domain Name Server (DNS) dari suatu rangkaian server DNS dan kembali ke server yang merecord data.

Untuk uji cobanya saya test presidenri.go.id sebagai target =)) .

Penggunaan Sederhananya

lindo@laptop:~# dnstracer presidenri.go.id
Tracing to presidenri.go.id[a] via 192.168.4.28, maximum of 3 retries
192.168.4.28 (192.168.4.28) Got answer
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.97) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.96) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.45) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.44) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.150.58) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.150.57) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.149.222) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.149.221) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.47.188) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.253.220) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.253.219) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.47.189) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.229) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.174) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.173) * Got answer Lame server
  \___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.230) Got answer Lame server

Untuk memperkecil hasil scanning,kita juga dapat menentukan server yang terkait dengan domain menggunakan syntax -s


lindo@laptop:~# dnstracer -o -s sahi78679.venus.orderbox-dns.com presidenri.go.id
Tracing to presidenri.go.id[a] via sahi78679.venus.orderbox-dns.com, maximum of 3 retries
sahi78679.venus.orderbox-dns.com (50.23.75.96) Got answer
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.173) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.230) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.229) Got answer Lame server
 |\___ sahi78679.mercury.orderbox-dns.com [presidenri.go.id] (50.23.136.174) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.44) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.97) Got answer Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.96) Lame server
 |\___ sahi78679.venus.orderbox-dns.com [presidenri.go.id] (50.23.75.45) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.149.222) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.149.221) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.150.58) Got answer Lame server
 |\___ sahi78679.mars.orderbox-dns.com [presidenri.go.id] (184.173.150.57) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.253.219) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.47.189) Got answer Lame server
 |\___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.47.188) Got answer Lame server
  \___ sahi78679.earth.orderbox-dns.com [presidenri.go.id] (67.15.253.220) Got answer Lame server

sahi78679.earth.orderbox-dns.com (67.15.253.220) presidenri.go.id -> 203.130.196.114
sahi78679.earth.orderbox-dns.com (67.15.47.188) presidenri.go.id -> 203.130.196.114
sahi78679.earth.orderbox-dns.com (67.15.47.189) presidenri.go.id -> 203.130.196.114
sahi78679.earth.orderbox-dns.com (67.15.253.219) presidenri.go.id -> 203.130.196.114
sahi78679.mars.orderbox-dns.com (184.173.150.57) presidenri.go.id -> 203.130.196.114
sahi78679.mars.orderbox-dns.com (184.173.150.58) presidenri.go.id -> 203.130.196.114
sahi78679.mars.orderbox-dns.com (184.173.149.221) presidenri.go.id -> 203.130.196.114
sahi78679.mars.orderbox-dns.com (184.173.149.222) presidenri.go.id -> 203.130.196.114
sahi78679.venus.orderbox-dns.com (50.23.75.45) presidenri.go.id -> 203.130.196.114
sahi78679.venus.orderbox-dns.com (50.23.75.97) presidenri.go.id -> 203.130.196.114
sahi78679.venus.orderbox-dns.com (50.23.75.44) presidenri.go.id -> 203.130.196.114
sahi78679.mercury.orderbox-dns.com (50.23.136.174) presidenri.go.id -> 203.130.196.114
sahi78679.mercury.orderbox-dns.com (50.23.136.229) presidenri.go.id -> 203.130.196.114
sahi78679.mercury.orderbox-dns.com (50.23.136.230) presidenri.go.id -> 203.130.196.114
sahi78679.mercury.orderbox-dns.com (50.23.136.173) presidenri.go.id -> 203.130.196.114
sahi78679.venus.orderbox-dns.com (50.23.75.96) presidenri.go.id -> 203.130.196.114

menggunakan -q (query) dan soa -o

lindo@laptop:~# dnstracer -q soa -o sahi78679.venus.orderbox-dns.com presidenri.go.id
Tracing to sahi78679.venus.orderbox-dns.com[soa] via 192.168.4.28, maximum of 3 retries
192.168.4.28 (192.168.4.28)
 |\___ ns1-109.akam.net [orderbox-dns.com] (193.108.91.109) Lame server
 |\___ usc5.akam.net [orderbox-dns.com] (23.3.14.3) Lame server
 |\___ asia1.akam.net [orderbox-dns.com] (96.7.251.129) Lame server
 |\___ ns1-106.akam.net [orderbox-dns.com] (193.108.91.106) Lame server
 |\___ eur6.akam.net [orderbox-dns.com] (195.59.44.133) Lame server
 |\___ eur2.akam.net [orderbox-dns.com] (62.41.78.200) Lame server
 |\___ usc4.akam.net [orderbox-dns.com] (96.17.144.195) Lame server
  \___ eur4.akam.net [orderbox-dns.com] (195.10.36.46) Lame server

–done

Artikel Terkait:

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: