| Name | Description |
|---|---|
| NS | Nameserver record contain the name of the authoritative servers hosting the DNS records for a domain. |
| A | Also known as a host record, the "A record" contains the IP address of a hostname. |
| MX | Mail Exchange records contain the names of the servers responsible for handling email for the domain. A domain can contain multiple MX records. |
| PTR | Pointer Records are used in reverse lookup zone and are used to find the records associated with an IP address. |
| CNAME | Canonical Name Records used to create aliases of other host records. |
| TXT | Text records can contain any arbitrary data and can be used for various purposes, such as domain ownership verification. |
Basic Host Lookup
host <.target-name>
- host www.google.com
Type enumeration host -t mx megacorpone.com (mx = mail exchange)
DNS Zone Transfer Zone file is copied from a master DNS server to a slave server. Zone files contains a list of all the DNS names configured for that zone. Zone transfers should only be allowed to authorized slave DNS servers but misconfiguration can make it possible for anyone to request a copy.
Syntax for performing zone transfer
host -l <.domain-name> <.dns-server-address>