Muhammad Daffa Blog

Disclaimer: My post is for academic purposes only, How to use this information is the visitor’s responsibility.

On this week I have learn information gathering skill for pentesting with tools such as whois lookup, dnsenum.

A WHOIS lookup is a way for you to search the public database for information about a specific domain, such as the expiration date, current registrar, registrant information, etc.

Whois lookup is very useful if you want to know for what your user is capable as for example you can use whois lookup to know which action the user is authorized to do.

DNSenum is a tool that it was designed with the purpose of enumerating DNS information about a domain. It is useful for pentesting that involves a web.

DNSenum can be used to find subdomains by initiating DNS Zone Transfer to the target.