recon_15 (int zone transfer)

View the exercise here: PentesterLab: Recon 15

OBJECTIVE

For this challenge, your goal is to perform a zone transfer on the internal zone named: "int" using the nameserver of z.hackycorp.com.

ZONE TRANSFER

Zone transfers are usually used to synchronize multiple DNS servers. Only a list of pre-defined hosts should be able to perform this operation. However, it's sometimes possible to retrieve information from internal zones by asking publicly available servers.

SOLUTION

dig AXFR @z.hackycorp.com int

dig: The tool for querying DNS.
AXFR: The query type, which requests a zone transfer (a copy of all DNS records for a domain).
@z.hackycorp.com: Specifies the DNS server (z.hackycorp.com) to contact.
int: The domain (zone) you're requesting the transfer for, in this case, int.

Previousrecon_14 (zone transfer)Nextrecon_16 (bind version)

Last updated 9 months ago

Was this helpful?