dig (domain information groper): is a flexible tool for interrogating DNS name servers (i.e. DNS profiling).
-
Get the IP address of www.domain_name.com:
dig www.domain_name.com +short
NOTE:
+short
gives you the short version of the output -
Get the email servers for the company:
dig domain_name.com MX +short
References
hashdump
: Meterpreter command for retrieving password hashes from
a target
meterpreter > run hashdump
[*] Obtaining the boot key...
[*] Calculating the hboot key using SYSKEY 8528c78df7ff55040196a9b670f114b6...
[*] Obtaining the user list and keys...
[*] Decrypting user keys...
[*] Dumping password hashes...
References
nslookup
(from name server lookup): is a network
administration command-line tool for querying the Domain Name System
(i.e. DNS profiling) (from
en.wikipedia.org/wiki/Nslookup).
Retrieve the IP address of a host:
nslookup www.domain_name.com
References