Whois: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| (One intermediate revision by the same user not shown) | |||
| Line 1: | Line 1: | ||
= Whois = | = Whois = | ||
'''Whois''' is a passive reconnaissance tool used to gather public registration data about domain names, IP addresses, and ASNs. It queries public WHOIS databases to retrieve ownership, administrative contacts, creation/expiry dates, and registrar details — all without touching the target server directly. Whois is essential in early recon phases for identifying ownership chains, domain infrastructure, and legal responsibility. | |||
'''Whois''' is a passive reconnaissance tool used to gather public registration data about domain names, IP addresses, and ASNs. | |||
It queries public WHOIS databases to retrieve ownership, administrative contacts, creation/expiry dates, and registrar details — all without touching the target server directly. | |||
Whois is essential in early recon phases for identifying ownership chains, domain infrastructure, and legal responsibility. | |||
== <span id="options"></span>Common Options == | == <span id="options"></span>Common Options == | ||
| Line 8: | Line 12: | ||
! Option !! Description | ! Option !! Description | ||
|- | |- | ||
| [[#ex-domain|<code>[DOMAIN]</code>]] || Lookup WHOIS data for a domain name | | [[#ex-domain|<code>[DOMAIN]</code>]] || Lookup WHOIS data for a domain name | ||
|- | |- | ||
| [[#ex-ip|<code>[IP]</code>]] || Retrieve WHOIS | | [[#ex-ip|<code>[IP]</code>]] || Retrieve WHOIS information for an IPv4/IPv6 address | ||
|- | |- | ||
| [[#ex-asn|<code>[ASN]</code>]] || Query | | [[#ex-asn|<code>[ASN]</code>]] || Query registration data for an Autonomous System Number | ||
|} | |} | ||
=== | === Server & Control === | ||
{| class="wikitable" | {| class="wikitable" | ||
! Option !! Description | ! Option !! Description | ||
|- | |- | ||
| [[#ex-customserver|<code>-h [HOST]</code>]] || Use a specific WHOIS server | | [[#ex-customserver|<code>-h [HOST]</code>]] || Use a specific WHOIS server | ||
|- | |- | ||
| <code>-p [PORT]</code> || Connect to a custom port on the WHOIS server | | <code>-p [PORT]</code> || Connect to a custom port on the WHOIS server | ||
|- | |- | ||
| [[#ex-recursion|<code>--no-recursion</code>]] || Disable | | [[#ex-recursion|<code>--no-recursion</code>]] || Disable automatic follow‑up queries to referral servers | ||
|} | |} | ||
| Line 30: | Line 34: | ||
! Option !! Description | ! Option !! Description | ||
|- | |- | ||
| [[#ex-nowarnings|<code>-B</code>]] || Suppress legal disclaimers | | [[#ex-nowarnings|<code>-B</code>]] || Suppress legal disclaimers | ||
|- | |- | ||
| <code>--verbose</code> || Print | | <code>--verbose</code> || Print additional debugging and parsing information | ||
|- | |- | ||
| <code>--raw</code> || Output the unprocessed server response | | <code>--raw</code> || Output the unprocessed server response | ||
| Line 43: | Line 47: | ||
whois example.com | whois example.com | ||
</syntaxhighlight> | </syntaxhighlight> | ||
=== <span id="ex-ip"></span>IP Address Lookup === | === <span id="ex-ip"></span>IP Address Lookup === | ||
| Line 49: | Line 52: | ||
whois 1.1.1.1 | whois 1.1.1.1 | ||
</syntaxhighlight> | </syntaxhighlight> | ||
=== <span id="ex-asn"></span>Autonomous System Lookup === | === <span id="ex-asn"></span>Autonomous System Lookup === | ||
| Line 55: | Line 57: | ||
whois AS13335 | whois AS13335 | ||
</syntaxhighlight> | </syntaxhighlight> | ||
=== <span id="ex-customserver"></span>Query Specific WHOIS Server === | === <span id="ex-customserver"></span>Query Specific WHOIS Server === | ||
| Line 61: | Line 62: | ||
whois -h whois.arin.net 8.8.8.8 | whois -h whois.arin.net 8.8.8.8 | ||
</syntaxhighlight> | </syntaxhighlight> | ||
=== <span id="ex-nowarnings"></span>Suppress Legal Info === | === <span id="ex-nowarnings"></span>Suppress Legal Info === | ||
| Line 67: | Line 67: | ||
whois -B example.com | whois -B example.com | ||
</syntaxhighlight> | </syntaxhighlight> | ||
=== <span id="ex-recursion"></span>Disable Referral Recursion === | === <span id="ex-recursion"></span>Disable Referral Recursion === | ||
| Line 73: | Line 72: | ||
whois --no-recursion example.com | whois --no-recursion example.com | ||
</syntaxhighlight> | </syntaxhighlight> | ||
== | == See Also == | ||
* [[dig]] | * [[dig]] | ||
* [[nslookup]] | * [[nslookup]] | ||
Latest revision as of 18:13, 13 May 2025
Whois
Whois is a passive reconnaissance tool used to gather public registration data about domain names, IP addresses, and ASNs. It queries public WHOIS databases to retrieve ownership, administrative contacts, creation/expiry dates, and registrar details — all without touching the target server directly.
Whois is essential in early recon phases for identifying ownership chains, domain infrastructure, and legal responsibility.
Common Options
Query Types
| Option | Description |
|---|---|
[DOMAIN] |
Lookup WHOIS data for a domain name |
[IP] |
Retrieve WHOIS information for an IPv4/IPv6 address |
[ASN] |
Query registration data for an Autonomous System Number |
Server & Control
| Option | Description |
|---|---|
-h [HOST] |
Use a specific WHOIS server |
-p [PORT] |
Connect to a custom port on the WHOIS server |
--no-recursion |
Disable automatic follow‑up queries to referral servers |
Output Handling
| Option | Description |
|---|---|
-B |
Suppress legal disclaimers |
--verbose |
Print additional debugging and parsing information |
--raw |
Output the unprocessed server response |
Examples
Basic Domain Lookup
whois example.comIP Address Lookup
whois 1.1.1.1Autonomous System Lookup
whois AS13335Query Specific WHOIS Server
whois -h whois.arin.net 8.8.8.8Suppress Legal Info
whois -B example.comDisable Referral Recursion
whois --no-recursion example.com