|
Penetration Testing
mailing list archives
RE: Several Domains
From: "Ahmed Zaki" <ahmedmzaki () gmail com>
Date: Fri, 12 Dec 2008 03:33:32 -0000
Thanks for your reply .
Apparently its my fault I should have made my question clearer.
Your target is Company X . The ip of the mail server turned to be
xxx.xxx.xxx.xxx and that when used to do a reverse DNS lookup gave
mail.companyx.com , mail.companyx-fs.com, mail.companyx.com.fs ,
mail.companyxfs.com . As a pentester how would you go about identifying the
actual domain name that is being used internally .
I am not asking for networking FACTS here, I am rather asking the
pentesters out there about their past experiences thus I identify myself as
a noob.
I hope this is clearer .
-----Original Message-----
From: Manuel Leithner [mailto:manuel.leithner () runbox com]
Sent: Friday, December 12, 2008 2:32 AM
To: Ahmed Zaki
Cc: pen-test () securityfocus com
Subject: Re: Several Domains
1. Wrong mailing list. This list is about pen testing, not networking 101.
2. Well, think. (Hint: myname.com and myname.name could be the same server.
What about 20 named vhosts, each having the same IP, but serving a different
site?)
Regards,
Manuel Leithner
On Fri, 12 Dec 2008 00:52:42 +0100, listbounce () securityfocus com wrote:
Hi all
I am noob and I am on a self learning exercise.
A friend who has a company has allowed to go ahead and
pursue my reconnaissance exercise on his domain. I cam across something
that
I would like maybe anyone to comment on it. What does it mean when I dig a
name for a host getting an ip address and when I do a reverse lookup I get
several names including the one I supplied. All the returned though
belong
to the same owner as I can see from the domain names .
Regards
__________ Information from ESET NOD32 Antivirus, version of virus
signature
database 3684 (20081211) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
__________ Information from ESET NOD32 Antivirus, version of virus signature
database 3685 (20081212) __________
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
| 
Intro
