Official Maltego Documentation » Transform Guide » PATERVA CTAS » To DNS Name [Other DNS names] << (IPAddress)

To DNS Name [Other DNS names]


Transform Meta Info

Display Name To DNS Name [Other DNS names]
Transform Name IPAddressToDNSName_SharedIP
Short Description This transform performs a reverse lookup via historical/passive DNS
Owner Paterva
Author Roelof Temmingh (roelof@paterva.com)
Input IPAddress
Output DNSName

 

Description

This transform queries two different 'historical' DNS databases - Serversniff and Robtex to see what other DNS names are associated with the IP Address. These databases are populated using various techniques.

The transform is useful to find co-hosted sites - e.g. the website (or MX, NS) of companyA could resolve to 1.2.3.4 and co-hosted on that IP address are www.companyB.com and/or companyAB.com. In certain cases you will find that the forward DNS entries for the resultant DNS names are is now pointing to other IP addresses (other than the supplied one). This simply means that changes have been made to DNS, and that the provider's database is keeping the old information. Sometimes this is useful (as you can see that a change was made), sometimes it is annoying.

Typical Use Case

IP Address ==> DNS Name --> Domain

==> To DNS Name [Other DNS names]
--> Related Transform

Continue to the To URLs [Show search engine results] << (PhoneNumber) page.


Official Maltego Documentation
-»
Transform Guide
-»
PATERVA CTAS
-»
To DNS Name [Other DNS names] << (IPAddress)

© Copyright 2017, Paterva PTY Limited