InfoSec, Linux help

DIG for DNS Queries

Another handy tool for making DNS queries is DIG.

dig domain.domain
(This is the default and simplest query, but it will provide you with a treasure trove of DNS info)

dig +nocmd domain.domain MX +noall +answer
(The nocmd option specifies that the request details should not be in the output, and the trailing part will ensure that the query only returns the answer)

You can also attempt a DNS zone transfer – which will transfer the entire DNS zone file; if the target server is incorrectly configured:
dig domain.domain AXFR +noall +answer
If successful you will have all DNS entries displayed on screen.

To attempt the DNS transfer from a specific DNS server you can use:
dig domain.domain AXFR +noall +answer @dns.domain.domain


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s