search
inHTBTHM
githubEdit

DNS

DNS (Domain Name System) is a decentralized system that translates domain names into IP addresses. It is essential for Internet functionality. run on port 53

Main types of DNS servers:

1️⃣ Root Servers – Store top-level domain (TLD) info.

2️⃣ Authoritative Name Servers – Provide original domain data.

3️⃣ Non-Authoritative Name Servers – Serve cached responses.

4️⃣ Caching Servers – Speed up lookups by storing queries.

5️⃣ Forwarding Servers – Forward requests to other DNS servers.

6️⃣ Resolvers – Process user queries and return results.

privacy & security, IT experts use DNS encryption methods like:

1️⃣ DNS over TLS (DoT) – Encrypts DNS queries via TLS.

2️⃣ DNS over HTTPS (DoH) – Uses HTTPS to secure requests.

3️⃣ DNSCrypt – Encrypts traffic between the device & name server.

DNS also stores additional domain-related information, such as:

Mail server records (MX)

Name server records (NS)

DNS leaks can expose critical information if not secured properly! 🚀

A

Returns an IPv4 address of the requested domain as a result.

AAAA

Returns an IPv6 address of the requested domain.

MX

Returns the responsible mail servers as a result.

NS

Returns the DNS servers (nameservers) of the domain.

TXT

This record can contain various information. The all-rounder can be used, e.g., to validate the Google Search Console or validate SSL certificates. In addition, SPF and DMARC entries are set to validate mail traffic and protect it from spam.

CNAME

This record serves as an alias for another domain name. If you want the domain www.hackthebox.euarrow-up-right to point to the same IP as hackthebox.euarrow-up-right, you would create an A record for hackthebox.euarrow-up-right and a CNAME record for www.hackthebox.euarrow-up-right.

PTR

The PTR record works the other way around (reverse lookup). It converts IP addresses into valid domain names.

SOA

Provides information about the corresponding DNS zone and email address of the administrative contact.

The SOA record is located in a domain's zone file and specifies who is responsible for the operation of the domain and how DNS information for the domain is managed.

which dot . in [postmaster8x8.com](<http://postmaster8x8.com>) refer to @

DNS Default Configuration: Key Files and Their Roles

DNS servers rely on three main configuration file types to manage domain name resolution effectively:

  1. Local DNS Configuration Files – Define the general settings of the DNS server.

  2. Zone Files – Store domain-specific records, mapping domain names to IP addresses.

  3. Reverse Name Resolution Files – Handle reverse lookups, converting IP addresses back to domain names.

Key Configuration Files in BIND9 (Linux DNS Server)

  • named.conf.local – Specifies the DNS zones managed by the server.

  • named.conf.options – Contains global settings, such as security policies and forwarders.

  • named.conf.log – Records server activity, errors, and debugging information.

useful: https://www.cvedetails.com/arrow-up-right

hashtag
Footprinting the Service

Subdomain Brute Forcing

PreviousSMTPNextIMAP/POP3

Last updated