Time
3 minutes
Difficulty
Intermediate

Video Transcription

00:04
Hello and welcome to this breaking stuff With Robert episode today, we're going to be talking about the n s walk.
00:13
So the objectives of this video or to provide you with a high level overview of D. N s wall and provide a demo of how the tools congee used
00:22
our target audience here. Really, anyone can use the tool, but it's going to be focused on network administrators looking to test their D. N s servers for Miss Configurations and penetration testers looking too quickly. Test systems. It may be vulnerable Do zone transfers.
00:38
Some pre requisites for this particular tool, while not required, is fundamental knowledge of how the NS works and fundamental knowledge of Cali command line utilization. So with that in mind, let's go ahead and jump into our demo.
00:53
Hello and welcome to our handy dandy demo environment. Today we're going over Deanna's walk, and we're going to give you some use cases for Deanna's walk. But ultimately it's a very easy to use. The NSD bugger
01:06
on DDE can assist you in kind of detecting whether or not you could perform zone transfers on specified domains,
01:12
and it checks for some internal inconsistencies as well. So let's go ahead and jump right in.
01:22
Will do. Deena's walked. Shh.
01:23
It's asking for a domain
01:26
dash. Dash E l p.
01:30
Alright, there we go. It's a very simple medicine tax here.
01:34
We can see it just gives us some additional options. We've got some billions here,
01:40
so if I wanted to test and I'm just going to use a fake domain in this case
01:45
for the testing, but will do recursive
01:48
no prints status is
01:49
and will perform some delegation checks. I'm just gonna use fake domaine dot com
01:57
and you'll notice here that it has to end with a dot so dot com. Well, that is the domain. You've gotta put an extra Donatien cheer for toe work.
02:06
So we're gonna cut away for a moment. Let this run. It can be very slow. And then when it finishes, we'll be right back to, uh, look at what we get.
02:15
All right. So, as you can see here, we just finished getting the feedback from our
02:20
fake domaine dot com. You can see it wasn't able to get any type of records. The query timed out. There was no authoritative name servers and also in transfer attempts of the domain failed. Now, in two days,
02:34
kind of cyber world, you really wouldn't be looking for a domain transfer to be successful by a non authoritative third party. That could be very, very bad in some cases. So if you did get a hit here where it was successful, able to do is own transfer. That would be bad news.
02:52
So this is kind of a very simple tool, pretty easy to use again. It does take a minute or two for the tool to run and provide output, but it could be very useful and doing some quick Vienna's testing. So with that in mind, let's jump back into our slides.
03:07
All right, so I hope that you enjoyed that demo of D. N s walk In summary, we've provided you with a high level overview of D. N s walk and provided you a demo of how the tool can be used. So with that in mind, I want to thank you for your time today, and I look forward to seeing you again soon.

How to Use DNSWalk (BSWR)

The DNSWalk tool is a Domain Name System (DNS) that is used to identify information on a list of IP addresses, as well as the corresponding hostnames that are stored in a specific server. It works by using a DNS zone transfer. It queries all ROOT servers and all returned Top Level Domain (TLD) servers for the domain (FQDN) of interest.

Instructed By

Instructor Profile Image
Robert Smith
Director of Security Services at Corsica
Instructor