A penetration tester wants to script out a way to discover all the RPTR records for a range of IP addresses. Which of the following is the MOST efficient to utilize? A) nmap -p 53 -oG dnslist.txt | cut -d ":" -f 4 B) nslookup -ns 8.8.8.8 /etc/resolv.conf

Question

A penetration tester wants to script out a way to discover all the RPTR records for a range of IP addresses. Which of the following is the MOST efficient to utilize? A) nmap -p 53 -oG dnslist.txt | cut -d ":" -f 4 B) nslookup -ns 8.8.8.8 << dnslist.txt C) for x in {1...254}; do dig -x 192.168.$x.$x; done D) dig -r > echo "8.8.8.8" >> /etc/resolv.conf

Quizplus · Accepted Answer

nmap -p 53 -oG dnslist.txt | cut -d ":" -f 4 is the most efficient way to discover all the RPTR records for a range of IP addresses. This command will use nmap to scan the specified IP address range for open DNS servers on port 53, and then use the -oG option to output the results in a greppable format. The cut command can then be used to extract the fourth field from each line of output, which will contain the RPTR record for the corresponding IP address.

A Penetration Tester Wants to Script Out a Way to Discover