# DNS Enumeration

{% embed url="<https://www.researchgate.net/publication/317486246/figure/fig5/AS:668322211299338@1536351840802/Hierarchical-DNS-system.ppm>" %}

{% tabs %}
{% tab title="DNS Enum" %}
{% @github-files/github-code-block url="<https://github.com/fwaeytens/dnsenum>" %}

```bash
# Usage
dnsenum DOMAIN

# Example
dnsenum google.com
```

{% endtab %}

{% tab title="DNS Recon" %}
{% @github-files/github-code-block url="<https://github.com/darkoperator/dnsrecon>" %}

```bash
# Usage
dnsrecon.py [-h] -d DOMAIN [-n NS_SERVER] [-r RANGE] [-D DICTIONARY] [-f] [-a] [-s] [-b] [-y] [-k] [-w] [-z] [--threads THREADS] [--lifetime LIFETIME] [--tcp] [--db DB] [-x XML] [-c CSV] [-j JSON] [--iw] [--disable_check_recursion] [--disable_check_bindversion] [-v] [-t TYPE]

# Example
dnsrecon -d google.com
```

### Tutorial

{% embed url="<https://securitytrails.com/blog/dnsrecon-tool>" %}
{% endtab %}
{% endtabs %}