Dnsdumpster
Dnsdumpster is an online and CLI-based reconnaissance tool for DNS enumeration. It maps a domain's external attack surface by collecting passive DNS records, subdomains, and network infrastructure using publicly available data sources. Dnsdumpster is commonly used in the reconnaissance phase of penetration testing.
Core Features
DNS Record Enumeration
| Output |
Description
|
| A |
IPv4 address records
|
| AAAA |
IPv6 address records
|
| CNAME |
Canonical names pointing to other domains
|
| MX |
Mail server records
|
| TXT |
Text records used for SPF, verification, etc.
|
| NS |
Name server records for authoritative domains
|
Subdomain Discovery
| Feature |
Description
|
| Subdomains |
Lists subdomains from passive data sources
|
| IP Metadata |
Maps subdomains to IP addresses with ownership and geolocation data
|
| Reverse DNS |
Attempts to resolve PTR records for mapped IPs
|
Visual Mapping
| Feature |
Description
|
| Network Graph |
Generates a visual domain-to-infrastructure relationship map
|
| Hosting Provider Data |
Identifies ASN, ISP, and hosting information for discovered infrastructure
|
Usage
Web Interface
CLI Tool (Python)
git clone https://github.com/PaulSec/API-dnsdumpster.com
cd API-dnsdumpster.com
python dnsdumpster.py example.com
See Also