RE: Several Domains



Thanks for your reply .

Apparently its my fault I should have made my question clearer.

Your target is Company X . The ip of the mail server turned to be
xxx.xxx.xxx.xxx and that when used to do a reverse DNS lookup gave
mail.companyx.com , mail.companyx-fs.com, mail.companyx.com.fs ,
mail.companyxfs.com . As a pentester how would you go about identifying the
actual domain name that is being used internally .

I am not asking for networking FACTS here, I am rather asking the
pentesters out there about their past experiences thus I identify myself as
a noob.

I hope this is clearer .

-----Original Message-----
From: Manuel Leithner [mailto:manuel.leithner@xxxxxxxxxx]
Sent: Friday, December 12, 2008 2:32 AM
To: Ahmed Zaki
Cc: pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Several Domains

1. Wrong mailing list. This list is about pen testing, not networking 101.
2. Well, think. (Hint: myname.com and myname.name could be the same server.
What about 20 named vhosts, each having the same IP, but serving a different
site?)

Regards,
Manuel Leithner

On Fri, 12 Dec 2008 00:52:42 +0100, listbounce@xxxxxxxxxxxxxxxxx wrote:
Hi all
       I am noob and I am on a self learning exercise.
                A friend who has a company has allowed to go ahead and
pursue my reconnaissance exercise on his domain. I cam across something
that
I would like maybe anyone to comment on it. What does it mean when I dig a
name for a host getting an ip address and when I do a reverse lookup I get
several names including the one I supplied.  All the returned though
belong
to the same owner as I can see from the domain names .

Regards
 



__________ Information from ESET NOD32 Antivirus, version of virus
signature
database 3684 (20081211) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------




__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com



__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------