Whois

From HackOps
Revision as of 18:13, 13 May 2025 by Vegard (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Whois[edit | edit source]

Whois is a passive reconnaissance tool used to gather public registration data about domain names, IP addresses, and ASNs. It queries public WHOIS databases to retrieve ownership, administrative contacts, creation/expiry dates, and registrar details — all without touching the target server directly.

Whois is essential in early recon phases for identifying ownership chains, domain infrastructure, and legal responsibility.

Common Options[edit | edit source]

Query Types[edit | edit source]

Option Description
[DOMAIN] Lookup WHOIS data for a domain name
[IP] Retrieve WHOIS information for an IPv4/IPv6 address
[ASN] Query registration data for an Autonomous System Number

Server & Control[edit | edit source]

Option Description
-h [HOST] Use a specific WHOIS server
-p [PORT] Connect to a custom port on the WHOIS server
--no-recursion Disable automatic follow‑up queries to referral servers

Output Handling[edit | edit source]

Option Description
-B Suppress legal disclaimers
--verbose Print additional debugging and parsing information
--raw Output the unprocessed server response

Examples[edit | edit source]

Basic Domain Lookup[edit | edit source]

whois example.com

IP Address Lookup[edit | edit source]

whois 1.1.1.1

Autonomous System Lookup[edit | edit source]

whois AS13335

Query Specific WHOIS Server[edit | edit source]

whois -h whois.arin.net 8.8.8.8

Suppress Legal Info[edit | edit source]

whois -B example.com

Disable Referral Recursion[edit | edit source]

whois --no-recursion example.com

See Also[edit | edit source]

Retrieved from "https://hackops.wiki/index.php?title=Whois&oldid=58"