Member-only story
of bob218
This is used if we require to access whatever scraps and metal information of the domain sites that we can. What it basically does is enumerates the DNS enumeration (Information) about domains.
Example:
dnsenum -r poor.at
The query is passing through all addresses of poor.at in a specific order. Depending on the availability of addresses, the order in which it passes through the query is different.
Next, we see the detection of wildcards. Wildcards are basically a symbol that is used to represent multiple characters. The registry of the wildcard character is stored in nnkcjxgqryt. Depending on the number of subdomains, the wildcard registry is different.
The third query are the name-servers, which NS are present in poor.at? Depending on how poor.at is protected, we may find nothing. Now, the number of name servers is equal to the number of subdomains.
PS: I hope this content was useful and thank you for reading:)
💻 Follow me
👏 Give the article 50 claps
📚 Read more articles on Medium
🔗 Connect on social media Github | Kaggle
