dnsmap is a command-line tool for Linux and Unix systems that is used to perform reconnaissance on a target domain. It can be used to map the IP addresses of a domain’s DNS servers, as well as to discover subdomains and hostnames associated with a domain. dnsmap can be useful for penetration testing, security assessments, and reconnaissance of an organization’s network infrastructure. It can be run on the command line and provide the output in the form of list of subdomains and IP addresses.
dnsmap Command Examples
1. Scan for subdomains using the internal wordlist:
# dnsmap example.com
2. Specify a list of subdomains to check for:
# dnsmap example.com -w path/to/wordlist.txt
3. Store results to a CSV file:
# dnsmap example.com -c path/to/file.csv
4. Ignore 2 IPs that are false positives (up to 5 possible):
# dnsmap example.com -i 123.45.67.89,98.76.54.32