RE: Several Domains
- From: "Ahmed Zaki" <ahmedmzaki@xxxxxxxxx>
- Date: Fri, 12 Dec 2008 03:33:32 -0000
Thanks for your reply .
Apparently its my fault I should have made my question clearer.
Your target is Company X . The ip of the mail server turned to be
xxx.xxx.xxx.xxx and that when used to do a reverse DNS lookup gave
mail.companyx.com , mail.companyx-fs.com, mail.companyx.com.fs ,
mail.companyxfs.com . As a pentester how would you go about identifying the
actual domain name that is being used internally .
I am not asking for networking FACTS here, I am rather asking the
pentesters out there about their past experiences thus I identify myself as
a noob.
I hope this is clearer .
-----Original Message-----
From: Manuel Leithner [mailto:manuel.leithner@xxxxxxxxxx]
Sent: Friday, December 12, 2008 2:32 AM
To: Ahmed Zaki
Cc: pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Several Domains
1. Wrong mailing list. This list is about pen testing, not networking 101.
2. Well, think. (Hint: myname.com and myname.name could be the same server.
What about 20 named vhosts, each having the same IP, but serving a different
site?)
Regards,
Manuel Leithner
On Fri, 12 Dec 2008 00:52:42 +0100, listbounce@xxxxxxxxxxxxxxxxx wrote:
Hi allthat
I am noob and I am on a self learning exercise.
A friend who has a company has allowed to go ahead and
pursue my reconnaissance exercise on his domain. I cam across something
I would like maybe anyone to comment on it. What does it mean when I dig abelong
name for a host getting an ip address and when I do a reverse lookup I get
several names including the one I supplied. All the returned though
to the same owner as I can see from the domain names .signature
Regards
__________ Information from ESET NOD32 Antivirus, version of virus
database 3684 (20081211) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
- Follow-Ups:
- Re: Several Domains
- From: ArcSighter
- Re: Several Domains
- From: Adam Thompson
- Re: Several Domains
- From: David Howe
- Re: Several Domains
- From: Tim Brown
- Re: Several Domains
- From: Todd Haverkos
- Re: Several Domains
- References:
- Several Domains
- From: Ahmed Zaki
- Several Domains
- Prev by Date: RE: Level of Exploitation
- Next by Date: Re: Several Domains
- Previous by thread: Re: Several Domains
- Next by thread: Re: Several Domains
- Index(es):
