Check for Reverse DNS lookup presence

Test Objective:

Obtain valid server names and aliases for the IP addresses in the defined scope of the test.
Only applicable if Check for DNS zone transfer failed.

Prerequisites:

  • IP addresses of the authoritative name servers
  • IP block / range

This Information can be harvested via:

Tools:

Linux (manual):

 dig @<nameserver> -x <ipaddress in scope>
 host <ipaddress in scope> <nameserver>

Linux (automated)

 dnsrecon –r <start ip> <end ip> <nameserver>
 fierce -range <iprange> -dnsserver <nameserver>

References: