Search This Blog........

Sunday, December 13, 2009

Hacking.......with Worm's

Once you locate where the utility is hidden, you could easily use it to perform both normal and reverse DNS lookups. as this is not a manual on using the "nslookup" command i will simply giving a basic relevant outline. in order to get a more detailed description of how this works or how to user it,
>nslookup IP Address
just go to run---- cmd -------- cd \------- cd windows
c:\windows>ping yahoo.com
Pinging yahoo.com {209.191.93.51} with 32 bytes of data:
Reply will come
then
c:\windows>nslookup 209.191.93.51
then comes....
Server: dnsblr.mantraonline.com
Address: 202.56.250.51
Name: address2.pim.vip.mud.yaho.com
Address: 209.191.93.51
Now, if u carefully look at the hostname that the reverse DNS lookup,gave use, then the last part reveals the country in which system resides in. you see, the '.in' parts signifies that the system is located in india. all countries have been allotted country codes, which more often than not are the part of the hostnames of the systems located in that country. this method can also be used to figure out as to which country a person lives in, if you know his email address . like mahesh983@yahoo.in
some common country codes are:
Australia .au
Indonesia .id
India .in
Japan .jp
Israel .il
Britain .uk
for a complete list of country codes, visit:
http://www.alldomains.com/
http://www.ianna.org/domain-names.html
Yet another and probably the second most eficient method (after reverse DNS queries) of tracing an IP to its exact geographical location, is to carry out a 'traceroute' on it. the 'tracert' or 'traceroute' commands give you names of IP's of the routers through shich it passses before reaching the destination. wndows users can perform a trace of an IP. by typing the following commands line on prompt:
c:\windows>tracert 209.191.93.51
Tracing route to 209.191.93.51 over a maximum of 30 hops
1 abc,netzero.com(232.61.41.251) 2 ms 1 ms 1 ms
2 xyz.netzero.com(209.191.23.0) 5 ms 5 ms 5 ms
3 232.61.41.10.(232.61.41.251) 9 ms 11 ms 13 ms
4 we21.spectranet.com (196.01.8312) 535 ms 549 ms 513 ms
5 isp.net.ny(196.23.0.25) 562 ms 596 ms 600 ms
6 196.23.0.25(196.23.0.25) 1195 ms 1204 ms
7 backbone.isp.ny(198.87.12.11) 1208 ms 1216 ms
8 asianet.com(202.12.32.10) 1210 ms 1239 ms 1211 ms
9 south.asinet.com(202.10.10.10) 1069 ms 1087 ms 1122ms
10 backbone.vsnl.net.in(203.98.46.01) 1064 ms 1109 ms 1061 ms
11 newdelhi-01.backbone.vsnl.net.in(203.102.46.01) 1185 ms 1146 ms 1203 ms
12 newdelhi-00.backbone.vsnl.net.in(203.102.46.02) 1159 ms 1073 ms
13 mtnl.net.in(203.194.56.00)1052 ms 642 ms 658 ms
the above shows route taken by data to reach the supplied IP is somewhat like this
Netzero-ISP from which the data is sent
Spectranet - A Backbone Provider
New Youk ISP -- >New York Backbone -->Asia ->South Asia -> India Backbone -> New Delhi Backbone ->Another router in New Delhi Backbone -> New Delhi ISP.
So basically this tracert does reveal my real location, which is : New Delhi, India, South Asia. Get it???
with the help of nslookup u can get location of an IP. jst as DNS lookup converts the hostname into IP address a reverse DNS lookup converts the ip address of aa host to hostname. by hostname what i mean to say is that it given us the name of the remote system in alphabets and numbers and periods,
DNS:-- domain name server :---- this server convert ip into domain name like yahoo or google has also an IP address and if u want to lookup of DNS so you can find with nslookup command
just go in start ---> run --> cmd
c:\Documents and Settings\Dohroo>nslookup google.com
see what message comes
Server: dnsblr.mantraonline.com
Address: 202.56.250.5
Non-authoritative answer:
Name: google.com
Address: 74.125.53.100, 74.125.67.100, 74.125.45.100
now ok ?
try it then u will understand i mean it will show u DNS and real addresses of google too

No comments:

Post a Comment

Shawn Welcome's You on my Blog....