Search the archives!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] DNS mining ?
- From: brian at dessent.net (Brian Dessent)
- Subject: [Full-disclosure] DNS mining ?
- Date: Mon, 09 Apr 2007 13:14:50 -0700
Aaron Gray wrote: > Is there not a tool that runs on *nux that does this ? I doubt it. If such a tool existed, it would just be querying some third party service like domaintools.com, not doing anything itself. In order to do this lookup yourself requires access to the TLD zone files, which requires signing a contract with Verisign (for .net & .com) or PIR (for .org) that says you won't use it to spam or whatever. http://www.verisign.com/information-services/naming-services/com-net-registry/page_001052.html http://www.pir.org/RegistrarResources/ZoneFileAccess.aspx Without that you'd have to bruteforce the TLD nameservers with all possible domain names, and that is obviously impractical (and stupid.) Brian
- References:
- [Full-disclosure] DNS mining ?
- From: Maxim Veksler
- [Full-disclosure] DNS mining ?
- From: Steven Adair
- [Full-disclosure] DNS mining ?
- From: Aaron Gray
- [Full-disclosure] DNS mining ?
- Prev by Date: [Full-disclosure] rPSA-2007-0070-1 openoffice.org
- Next by Date: [Full-disclosure] iDefense Security Advisory 04.09.07: AOL AIM and ICQ File Transfer Path-Traversal Vulnerability
- Previous by thread: [Full-disclosure] DNS mining ?
- Next by thread: [Full-disclosure] DNS mining ?
- Index(es):