EC-Council
312-50V9 · Question #541
312-50V9 Question #541: Real Exam Question with Answer & Explanation
The correct answer is B: A zone transfer. Tess King is using nslookup to retrieve all DNS records for a domain, which is the definition of a DNS zone transfer. This technique copies all zone data from a DNS server, exposing the full DNS infrastructure.
Question
Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for child Domains), zone serial number, TimeToLive (TTL) records, etc) for a Domain. What do you think Tess King is trying to accomplish? Select the best answer.
Options
- AA zone harvesting
- BA zone transfer
- CA zone update
- DA zone estimate
Explanation
Tess King is using nslookup to retrieve all DNS records for a domain, which is the definition of a DNS zone transfer. This technique copies all zone data from a DNS server, exposing the full DNS infrastructure.
Common mistakes.
- A. Zone harvesting is not a standard DNS term - the correct term for querying all DNS records from a server is zone transfer.
- C. A zone update refers to modifying or synchronizing DNS record changes, not querying and retrieving all existing records.
- D. Zone estimate is not a recognized DNS operation or terminology in any DNS standard or protocol.
Concept tested. DNS zone transfer reconnaissance using nslookup
Reference. https://learn.microsoft.com/en-us/windows-server/networking/dns/manage/zone-transfers
Community Discussion
No community discussion yet for this question.